Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

TSC Meeting (12 Dec 2023) - v3.8.1 patch release progress, v3.9.0 release plans, ST2-K8s security #129

Closed
arm4b opened this issue Dec 8, 2023 · 3 comments
Labels
TSC:meeting StackStorm Technical Steering Committee Meetings related topics
Milestone

Comments

@arm4b
Copy link
Member

arm4b commented Dec 8, 2023

December 2023 @StackStorm/tsc 1 hour meeting:

Meeting Agenda

v3.8.1 Release Progress (finalizing)

StackStorm Contributors and Maintainers

StackStorm v3.8.1 patch release wouldn't be possible without our opensource community who listened when we asked for help and stepped in to assist: fixing broken builds, updating dependencies, security, testing. Let's highlight volunteers, contributors and maintainers who were active recently or helped with the v3.8.1 patch release and upcoming v3.9.0.

Starting strong with the community-driven v3.8.1, there's much more work that needs to be done for the upcoming bigger v3.9!

v3.9.0 Release Planning

  • Project: https://github.com/orgs/StackStorm/projects/31
  • Target: ???
    • +1m, +2m, +3m after the patch release?
  • Release Manager: TSC volunteer Needed!
  • Release Assistant: TSC volunteer Needed!
  • Major changes:
    • Drop py3.6
      • Drop U18
      • Migrate py3.6 -> py?? for EL7
    • Update all the dependencies
    • Add U22
    • Upgrade MongoDB to v6.0
    • SSO/SAML support (PRs by community)
    • pants builds?
    • anything else?

Adding automated security scan for stackstorm-k8s

Requested by @ZoeLeah to add security scan like like Snyk to raise awareness around StackStorm K8s/Docker security, its components and builds.

@arm4b arm4b added the TSC:meeting StackStorm Technical Steering Committee Meetings related topics label Dec 8, 2023
@arm4b arm4b added this to the 3.8.1 milestone Dec 8, 2023
@Ein-nor
Copy link

Ein-nor commented Dec 12, 2023

We use Snyk not only for scanning stackstorm-k8s, but for all repositories of StackStorm that we use. Here is some information about Snyk and how you can register open source software for free: https://snyk.io/de/open-source-projects/

@Ein-nor
Copy link

Ein-nor commented Dec 12, 2023

If it's not too late, I would like to add another item to the agenda.
SonarCloud: https://www.sonarsource.com/products/sonarcloud/

@arm4b
Copy link
Member Author

arm4b commented Dec 12, 2023

Meeting Minutes

Attendees

@ZoeLeah, @winem, @rush-skills, @dalesmith, Ravi, Scott, Wilson, @amanda11, @armab

v3.8.1 patch release progress

Contributors, Maintainers and Adopters

New Adopters:

v3.9.0 Plans

Project - https://github.com/orgs/StackStorm/projects/31/views/1
TSC decided to ship the following in the upcoming v3.9.0:

Snyk (security checks) and SonarCloud (linting, static analysis) integrations

@nzlosh nzlosh closed this as completed Feb 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
TSC:meeting StackStorm Technical Steering Committee Meetings related topics
Projects
None yet
Development

No branches or pull requests

3 participants