History

Craig Ingram 007629e133 Update README		2019-02-08 12:14:52 -05:00
..
Atredis and Trail of Bits Proposal.pdf	published accepted proposal and updated mailing lists	2019-01-28 13:34:35 -08:00
OWNERS	Updated OWNERS files to include link to docs	2019-01-30 19:37:21 +01:00
README.md	Update README	2019-02-08 12:14:52 -05:00
RFP.md	Added mailing list for wg-audit	2018-11-26 09:56:15 -08:00
RFP_Decision.md	Add wg-security-audit RFP decision process	2019-02-08 12:12:13 -05:00

Security Audit Working Group

Perform a security audit on k8s with a vendor and produce as artifacts a threat model and whitepaper outlining everything found during the audit.

Meetings

The RFP will be open between 2018/10/29 and 2018/11/30 and has been published here.

The RFP is now closed. The working group selected Trail of Atredis, a collaboration between Trail of Bits and Atredis Partners to perform the audit.

You can read more about the vendor selection here.

Sensitive communications regarding the audit should be sent to the private variant of the mailing list.