Skip to content

Commit

Permalink
Update SoAR-and-Compliance.md
Browse files Browse the repository at this point in the history 
revert the user story titles
  • Loading branch information
@WalterMoar
WalterMoar authored Sep 16, 2024
1 parent 39f793f commit 31c25e9
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions docs/About/SoAR-and-Compliance.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,7 +38,7 @@ The SoAR section "Assessment", subsection "Vulnerability Management" states:
CHEFS is on a two week sprint schedule, and this review happens before every sprint planning meeting. In [Red Hat ACS](https://acs.developer.gov.bc.ca) ensure that the top item in the `Images most at risk` has a JIRA item created for it. If not, create a JIRA item in the Backlog using the template:

- _Type_: Task
- _Title_: As a Developer, I need to update **[IMAGE_NAME]**, so that ACS is happier
- _Title_: ACS Image at risk: **[IMAGE_NAME]**
- _Description_:<br>The Red Hat Advanced Cluster Security (ACS) application has identified the image **[IMAGE_NAME]** as having vulnerabilities that are fixable. To satisfy the requirements outlined in the Security Threat and Risk Assessment's (STRA) Statement of Acceptable Risks (SoAR), this image must be updated to resolve fixable vulnerabilities (or mitigated in some other way, if updating the image is not possible).
- _Epic Link_: CHEFS DevOps

Expand All @@ -55,7 +55,7 @@ The SoAR section "Assessment", subsection "Vulnerability Management" states:
CHEFS is on a two week sprint schedule, and this review happens before every sprint planning meeting. In the `common-hosted-form-service` GitHub repository check the `Security` > `Dependabot` alerts. Create a JIRA item in the Backlog for new alerts using the template:

- _Type_: Task
- _Title_: As a Developer, I need to update **[PACKAGE_NAME]** in **[MANIFEST_DIR]**, so that CHEFS is secure
- _Title_: Dependabot Vulnerability Alert for **[PACKAGE_NAME]** in **[MANIFEST_DIR]**
- _Description_:<br>The GitHub Dependabot process has created an alert for the **[PACKAGE_NAME]** dependency. To satisfy the requirements outlined in the Security Threat and Risk Assessment's (STRA) Statement of Acceptable Risks (SoAR), this vulnerability must be handled by updating the package version (or mitigated in some other way, if updating the package is not possible).<br>
ht<workaround>tps://gi</workaround>thub.com/bcgov/common-hosted-form-service/security/dependabot/**[DEPENDABOT_ID]**
- _Epic Link_: CHEFS DevOps
Expand Down

0 comments on commit 31c25e9

Please sign in to comment.