-
Notifications
You must be signed in to change notification settings - Fork 33
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #76 from skliper/ic-20210305
ci_lab Integration candidate: 2021-03-05
- Loading branch information
Showing
3 changed files
with
35 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -4,12 +4,38 @@ | |
|
|
||
| To report a vulnerability for the ci_lab subsystem please [submit an issue](https://github.com/nasa/ci_lab/issues/new/choose). | ||
|
|
||
| For general cFS vulnerabilities please [open a cFS framework issue](https://github.com/nasa/cfs/issues/new/choose) and see our [top-level security policy](https://github.com/nasa/cFS/security/policy). | ||
| For general cFS vulnerabilities please [open a cFS framework issue](https://github.com/nasa/cfs/issues/new/choose) and see our [top-level security policy](https://github.com/nasa/cFS/security/policy) for additional information. | ||
|
|
||
| In either case please use the "Bug Report" template and provide as much information as possible. Apply appropraite labels for each report. For security related reports, tag the issue with the "security" label. | ||
|
|
||
| ## Testing | ||
|
|
||
| **Disclaimer: nasa/ci_lab is not responsible for any liability incurred under the [Apache License 2.0](https://github.com/nasa/ci_lab/blob/main/LICENSE).** | ||
|
|
||
| Testing is an important aspect our team values to improve ci_lab. | ||
|
|
||
| To view tools used for the cFS bundle, see our [top-level security policy](https://github.com/nasa/cFS/security/policy). | ||
|
|
||
| ### CodeQL | ||
|
|
||
| The [ci_lab CodeQL GitHub Actions workflow](https://github.com/nasa/ci_lab/actions/workflows/codeql-build.yml) is available to the public. To review the results, fork the ci_lab repository and run the CodeQL workflow. | ||
|
|
||
| CodeQL is ran for every push and pull-request on all branches of ci_lab in GitHub Actions. | ||
|
|
||
| For the CodeQL GitHub Actions setup, visit https://github.com/github/codeql-action. | ||
|
|
||
| ### Cppcheck | ||
|
|
||
| The [ci_lab Cppcheck GitHub Actions workflow and results](https://github.com/nasa/ci_lab/actions/workflows/static-analysis.yml) are available to the public. To view the results, select a workflow and download the artifacts. | ||
|
|
||
| Cppcheck is ran for every push on the main branch and every pull request on all branches of ci_lab in Github Actions. | ||
|
|
||
| For more information about Cppcheck, visit http://cppcheck.sourceforge.net/. | ||
|
|
||
| ## Additional Support | ||
|
|
||
| For additional support, email us at [email protected]. For help using OSAL and cFS, [subscribe to our mailing list](https://lists.nasa.gov/mailman/listinfo/cfs-community) that includes all the community members/users of the NASA core Flight Software (cFS) product line. The mailing list is used to communicate any information related to the cFS product such as current releases, bug findings and fixes, enhancement requests, community meeting notifications, sending out meeting minutes, etc. | ||
| For additional support, submit a GitHub issue. You can also email the cfs community at [email protected]. | ||
|
|
||
| You can subscribe to the mailing list [here](https://lists.nasa.gov/mailman/listinfo/cfs-community) that includes all the community members/users of the NASA core Flight Software (cFS) product line. The mailing list is used to communicate any information related to the cFS product such as current releases, bug findings and fixes, enhancement requests, community meeting notifications, sending out meeting minutes, etc. | ||
|
|
||
| If you wish to report a cybersecurity incident or concern please contact the NASA Security Operations Center either by phone at 1-877-627-2732 or via email address [email protected]. | ||
| If you wish to report a cybersecurity incident or concern, please contact the NASA Security Operations Center either by phone at 1-877-627-2732 or via email address [email protected]. | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters