Skip to content

Commit

Permalink
Creating the /resources landing page.
Browse files Browse the repository at this point in the history
Signed-off-by: Pedro Ignacio <[email protected]>
  • Loading branch information
pedroignacio13 committed Dec 18, 2024
1 parent ad6001c commit fdcc438
Showing 1 changed file with 30 additions and 0 deletions.
30 changes: 30 additions & 0 deletions community/resources/README.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,30 @@
# TAG Security resources

Here you will find some assets used by the members of the TAG Security in their activities.
This page contains the following resources:

### Design
All the graphical resources used in the documents created by the TAG can be found in this section of the website.
You will find the TAG's logos in differente formats and colors and will also find information about the color palette used by the TAG.

### Landscape
At the landscape section you will be able to find information related to the CNCF Landscape evaluation performed by the TAG Security. There's information about the process used to review it as well as some of the definitions created by the working group.

### Project Resources
Part of the TAG's work is to assess Open Source projects on journey through the CNCF promotion process.
In this section you will find the templates used by the projects to start their security evalution.

### Provenance Implementation
Here you will find the TAG's recommendation for the projects documentation of the Supply Chain Security decision aiming user engagement. There's also an example of how Argo CD organizes their documents.

### Security Fuzzing Handbook
Another security resource used by the open source projects is the Fuzzing tool, which enables the finding of ssecurity and reliability issues in software. This tools helps finding vulnerabilities in software, which might be exploited by attackers as the solution goes through.

### Security Lexicon
To help the understanding of security-related subjects the Cloud Native Security Lexicon is a creation of the TAG Security to standardize the terminlogies commonly used in projects.

### Security Whitepaper
The Cloud Native Security Whitepaper is a document created by the TAG Security which provides information about the creation of secure cloud native capabilities.

### Use Case Personas
This section provides a definition of common personas involved in Cloud Native projects. This will help the creation and definition of architectures and documents that aim a specific public.

0 comments on commit fdcc438

Please sign in to comment.