From ad44b8e61a1004a4731d73c2e0cd55550cb36bfe Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Andr=C3=A9s=20Vega?= Date: Fri, 21 Jun 2024 11:25:51 -0700 Subject: [PATCH 1/3] Update community README.md MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Expand on directory structure and contents of each subdirectory. Signed-off-by: Andrés Vega Signed-off-by: Andrés Vega --- community/README.md | 39 +++++++++++++++++++++++++++++++++++++-- 1 file changed, 37 insertions(+), 2 deletions(-) diff --git a/community/README.md b/community/README.md index 30f6c609a..12556f808 100644 --- a/community/README.md +++ b/community/README.md @@ -1,3 +1,38 @@ -# TAG-Security Community Activities +# Community Directory -The Security TAG has several working groups that organize community activities around specific topics, including recurring meetings. +Welcome to the Community Directory of the CNCF TAG Security repository. This directory is a central hub for all community-related activities, documents, and resources. It is organized to facilitate collaboration, provide information, and support the various working groups and events within the TAG Security community. + +## Directory Structure + +**catalog/** + - Contains the catalog of supply chain compromises. + +**publications/** + - Index of published papers, reports, whitepapers, and audio versions of publications. The source files are located in: + - **resources/** if they are overarching documents. + - **community/working-groups/** if they are owned by a working group. + - **assessments/** if they are assessment documents. + +**working-groups/** + + - **archive/policy/**: Contains archived Policy-as-Code assets. + - **automated-governance/**: Assets for the Automated Governance working group. + - **compliance/**: Assets for the Compliance working group. + - **controls/**: Assets for the Controls working group. + - **research/**: Assets related to the Research working group. + - **supply-chain-security/**: Resources and documents for the Supply Chain Security working group. + - **catalog/**: Contains the catalog of working group activities and documents. + + **events/** + + - Information about past and future community gatherings. + +**Community Resources** + + - **Design**: Colors and logos used in documents and presentations. + - **Overarching Publications:**: `Cloud Native Security Landscape, Provenance Implementation Guides, Security Fuzzing Handbook, Lexicon, White Paper, and Use Case Personas. + - **Project Resources/**: Contains various project-specific resources and templates. + +## Contribution Guidelines + +We welcome contributions to this directory. Please follow the general contribution guidelines outlined in the root `CONTRIBUTING.md` file of this repository. Ensure that your contributions align with the purpose of each subdirectory and provide clear and useful information for community members. From 0a8d00781305d158a9aac4e3850ba6ea7090a5dd Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Andr=C3=A9s=20Vega?= Date: Mon, 19 Aug 2024 13:56:51 -0700 Subject: [PATCH 2/3] Update README.md MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Andrés Vega Signed-off-by: Andrés Vega --- community/README.md | 53 +++++++++++++++++++++------------------------ 1 file changed, 25 insertions(+), 28 deletions(-) diff --git a/community/README.md b/community/README.md index 12556f808..c30b824e7 100644 --- a/community/README.md +++ b/community/README.md @@ -4,35 +4,32 @@ Welcome to the Community Directory of the CNCF TAG Security repository. This dir ## Directory Structure -**catalog/** - - Contains the catalog of supply chain compromises. +### Catalog +- Contains the catalog of supply chain compromises. + +### Publications +- Index of published papers, reports, whitepapers, and audio versions of publications. The source files are located in: + - **resources/** if they are overarching documents. + - **community/working-groups/** if they are owned by a working group. + - **assessments/** if they are assessment documents. + +### Working Groups +- **archive/policy/**: Contains archived Policy-as-Code assets. +- **automated-governance/**: Assets for the Automated Governance working group. +- **compliance/**: Assets for the Compliance working group. +- **controls/**: Assets for the Controls working group. +- **research/**: Assets related to the Research working group. +- **supply-chain-security/**: Resources and documents for the Supply Chain Security working group. +- **catalog/**: Contains the catalog of working group activities and documents. + +### Events +- Information about past and future community gatherings. + +### Community Resources +- **Design**: Colors and logos used in documents and presentations. +- **Overarching Publications**: Cloud Native Security Landscape, Provenance Implementation Guides, Security Fuzzing Handbook, Lexicon, White Paper, and Use Case Personas. +- **Project Resources/**: Contains various project-specific resources and templates. -**publications/** - - Index of published papers, reports, whitepapers, and audio versions of publications. The source files are located in: - - **resources/** if they are overarching documents. - - **community/working-groups/** if they are owned by a working group. - - **assessments/** if they are assessment documents. - -**working-groups/** - - - **archive/policy/**: Contains archived Policy-as-Code assets. - - **automated-governance/**: Assets for the Automated Governance working group. - - **compliance/**: Assets for the Compliance working group. - - **controls/**: Assets for the Controls working group. - - **research/**: Assets related to the Research working group. - - **supply-chain-security/**: Resources and documents for the Supply Chain Security working group. - - **catalog/**: Contains the catalog of working group activities and documents. - - **events/** - - - Information about past and future community gatherings. - -**Community Resources** - - - **Design**: Colors and logos used in documents and presentations. - - **Overarching Publications:**: `Cloud Native Security Landscape, Provenance Implementation Guides, Security Fuzzing Handbook, Lexicon, White Paper, and Use Case Personas. - - **Project Resources/**: Contains various project-specific resources and templates. - ## Contribution Guidelines We welcome contributions to this directory. Please follow the general contribution guidelines outlined in the root `CONTRIBUTING.md` file of this repository. Ensure that your contributions align with the purpose of each subdirectory and provide clear and useful information for community members. From ecdb775347f0d7239e59c8af2a6e7904145871ac Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Andr=C3=A9s=20Vega?= Date: Mon, 19 Aug 2024 13:59:18 -0700 Subject: [PATCH 3/3] linting: blank lines MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Andrés Vega Signed-off-by: Andrés Vega --- community/README.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/community/README.md b/community/README.md index c30b824e7..2eacef666 100644 --- a/community/README.md +++ b/community/README.md @@ -5,15 +5,18 @@ Welcome to the Community Directory of the CNCF TAG Security repository. This dir ## Directory Structure ### Catalog + - Contains the catalog of supply chain compromises. ### Publications + - Index of published papers, reports, whitepapers, and audio versions of publications. The source files are located in: - **resources/** if they are overarching documents. - **community/working-groups/** if they are owned by a working group. - **assessments/** if they are assessment documents. ### Working Groups + - **archive/policy/**: Contains archived Policy-as-Code assets. - **automated-governance/**: Assets for the Automated Governance working group. - **compliance/**: Assets for the Compliance working group. @@ -23,9 +26,11 @@ Welcome to the Community Directory of the CNCF TAG Security repository. This dir - **catalog/**: Contains the catalog of working group activities and documents. ### Events + - Information about past and future community gatherings. ### Community Resources + - **Design**: Colors and logos used in documents and presentations. - **Overarching Publications**: Cloud Native Security Landscape, Provenance Implementation Guides, Security Fuzzing Handbook, Lexicon, White Paper, and Use Case Personas. - **Project Resources/**: Contains various project-specific resources and templates.