Re: [edk2-devel] [PATCH v1 0/1] Define security policy in SECURITY.md file for repository

2023-03-28 Thread Kevin@Insyde via groups.io 
Reviewed-by: Kevin D Davis @insyde.com>KevinInsyde SoftwareOn Mar 27, 2023, at 5:26 PM, Demeter, Miki via groups.io  wrote:






Ack
 
Need to get this acked by others in infosec too
 
 

-- 

Miki Demeter (she/her/Miki)
Security Researcher / FW Developer
FST
Intel Corporation
 
Co-Chair, Network of Intel African-Ancestry(NIA) - Oregon
NIA-Oregon
 
Portland Women in Tech Best Speaker
miki.deme...@intel.com
503.712.8030 (office)
971.248.0123 (cell)


 
 


From: Kun Qin 
Date: Thursday, March 9, 2023 at 1:44 PM
To: devel@edk2.groups.io 
Cc: Andrew Fish , Leif Lindholm , Kinney, Michael D , Demeter, Miki , Sean Brogan 
Subject: [PATCH v1 0/1] Define security policy in SECURITY.md file for repository



This change added a markdown file as a policy guideline for Tianocore EDK2
community to handle security sensitive reports.

Patch v1 branch: https://github.com/kuqin12/edk2/tree/patch-1

Cc: Andrew Fish 
Cc: Leif Lindholm 
Cc: Michael D Kinney 
Cc: Miki Demeter 
Cc: Sean Brogan 

Sean Brogan (1):
  Define security policy in SECURITY.md file for repository

 SECURITY.md | 33 
 1 file changed, 33 insertions(+)
 create mode 100644 SECURITY.md

-- 
2.37.1.windows.1










_._,_._,_



Groups.io Links:


  
You receive all messages sent to this group.
  
  



View/Reply Online (#102038) |


  

|

  Mute This Topic

| New Topic




Your Subscription |
Contact Group Owner |

Unsubscribe

 [arch...@mail-archive.com]
_._,_._,_



smime.p7s
Description: S/MIME cryptographic signature

Re: [edk2-devel] TianoCore Community Meeting 20220407 EMEA/NAMO

2022-04-07 Thread Kevin@Insyde via groups.io 
Miki,

I’m not able to subscribe to https://edk2.groups.io/g/devel/calendar

Do you know if that’s a groups.io problem or a me problem?

Kevin D Davis
Security Strategist
Insyde Software
Phone: 503-310-

On Apr 7, 2022, at 9:42 AM, Demeter, Miki via groups.io 
 wrote:


# TianoCore Community Meeting


**Highlights:**
- GSOC Need Additional Primary Mentors???
- Bugzilla Status update – Devs still need to update status (ongoing issue)
- UEFI Summit switched to Virtual only
- Question to the community Concerns about additional dependencies?

# Meeting Minutes:

1) **Event Updates (_5 minutes]**
- **UEFI Summit switched to Virtual only**

2) [**Stable Tag Updates (_5 minutes_)**
- Soft Freeze - 2022-
- Hard freeze - 2022-
- 2022- Release
 -** Stable Tag 20220225 released **

3) **Stewards Download (_20 minutes_)**
-**Coverity Status**
-- No Updates
- Raised topic number of dependencies on external services (git sub-modules, 
tools VS, iasm, nasm, Python, pip module)
-- CI tools (spell check has a dependency on node package manager)
-- Stewards responsible to validate whether new dependencies are appropriate.
-- Developer helper tools (don’t affect CI builds)
-- Question to the community Concerns about additional dependencies


-** Bugzilla Status **
- Still Need developers to update issues Bug Scrubs working through issues


4) **Opens (_30 minutes_)**
- Brian Johnson concerned about the way build system has become too complex 
need to simplify, possibly a docker image to help
-- git submodules are complex and not well liked
- Rebecka helping Andrew to get the GDB scripts rebased and checked in waiting 
on a few more reviews.
- Rajnish – A way to run CI/CD Locally - 
https://github.com/tianocore/edk2/tree/master/.pytool#running-ci-locally

**AR: Miki reach out to Nate(GSOC) and Felix (Coverity)**
**AR: Forward info on UEFI Summit-  
brian.john...@hpe.com, 
rajnish.s.chau...@dell.com **

Next meeting will be back on the on the first Thursday of the month.


--
Miki Demeter (she/her)
Security Researcher
IPAS GO
Intel Corporation

Portland Women in Tech Best Speaker 2019
miki.deme...@intel.com




-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#88562): https://edk2.groups.io/g/devel/message/88562
Mute This Topic: https://groups.io/mt/90317261/21656
Group Owner: devel+ow...@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-