...
| Category | Task | Owner | Status | ETA | Comments |
|---|---|---|---|---|---|
CI/CD Logs upload to Nexus | Register an LFID | Hao | Complete | https://jira.linuxfoundation.org/plugins/servlet/theme/portal/2 https://identity.linuxfoundation.org/ https://jira.linuxfoundation.org/plugins/servlet/theme/portal/2/IT-20459 | |
| Request permission for Nexus log | Yin/Hao | Complete | |||
| Set up CD pipelines | Yin | In Progress | |||
| Upload CD logs to Nexus | Hao | In Progress | |||
Bluval | Provision jumpserver | Yin/Hao | Complete | ||
| Test set up and run tests | Hao | In Progress | |||
| Fix issues for failed tests | |||||
| Report results | |||||
Security Scan | Vuls: test set up and run tests | Hao | In Progress | Steps To Implement Security Scan Requirements Reuse the jumpserver for Bluval tests. | |
| Lynis: test set up and run tests | Hao | In Progress | |||
| Kube-Hunter: test set up and run tests | Hao | In Progress | |||
| Fix issues for failed tests | Hao | In Progress | |||
| Upload test results to Nexus |
Test Results & Analysis:
| Test | Result |
|---|
| Applied Fixes | Comment | ||
|---|---|---|---|
| Lynis | Pass | 27 fixed applied, see Steps To Implement Security Scan Requirements | To maintain the pass state, need to restart the server if it's required |
| Vuls | 8 CVE with score > 9.0 | ||
| Kube-Hunter | 2 out of 3 passes | ||
| Conformance |