<!-- 
RSS generated by JIRA (1001.0.0-SNAPSHOT#100246-sha1:7a5c50119eb0633d306e14180817ddef5e80c75d) at Thu Feb 08 23:29:29 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary add field=key&field=summary to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>FOLIO Jira</title>
    <link>https://folio-org.atlassian.net</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>1001.0.0-SNAPSHOT</version>
        <build-number>100246</build-number>
        <build-date>07-02-2024</build-date>
    </build-info>

<item>
            <title>[FOLIO-3622] Snyk Developer Security Platform</title>
                <link>https://folio-org.atlassian.net/browse/FOLIO-3622</link>
                <project id="10290" key="FOLIO">FOLIO</project>
                    <description>&lt;h2&gt;&lt;a name=&quot;Overview&quot;&gt;&lt;/a&gt;Overview&lt;/h2&gt;

&lt;p&gt;The purpose of this feature is to utilize the Snyk project to identify potential security risks/vulnerabilities.&lt;/p&gt;

&lt;p&gt;NOTE: the FOLIO project is already using Snky, but the feeling is that it&apos;s not being used to its full potential.&#160; We can likely get more out of this tool with some effort.&lt;/p&gt;

&lt;h2&gt;&lt;a name=&quot;WhatisSnyk%3F&quot;&gt;&lt;/a&gt;What is Snyk?&lt;/h2&gt;

&lt;p&gt;From &lt;a href=&quot;https://snyk.io/what-is-snyk/&quot; class=&quot;external-link&quot; rel=&quot;nofollow noreferrer&quot;&gt;https://snyk.io/what-is-snyk/&lt;/a&gt; :&lt;/p&gt;

&lt;blockquote&gt;&lt;p&gt;Snyk (pronounced sneak) is a developer security platform for securing code, dependencies, containers, and infrastructure as code.&lt;/p&gt;&lt;/blockquote&gt;

&lt;p&gt;Our documentation about our Snyk usage: &lt;a href=&quot;https://folio-org.atlassian.net/wiki/display/SEC/Snyk&quot; class=&quot;external-link&quot; rel=&quot;nofollow noreferrer&quot;&gt;https://folio-org.atlassian.net/wiki/display/SEC/Snyk&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;Snyk&apos;s own documentation: &lt;a href=&quot;https://docs.snyk.io/&quot; class=&quot;external-link&quot; rel=&quot;nofollow noreferrer&quot;&gt;https://docs.snyk.io/&lt;/a&gt;&lt;/p&gt;

&lt;h2&gt;&lt;a name=&quot;Scope&quot;&gt;&lt;/a&gt;Scope&lt;/h2&gt;

&lt;ul&gt;
	&lt;li&gt;Investigate, learn, and document Snyk.
	&lt;ul&gt;
		&lt;li&gt;What knobs can be adjusted to better suite our needs?&lt;/li&gt;
		&lt;li&gt;Can snyk be leveraged for higher quality, more complete scans?&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;Design and implement processes improvements for using Snyk in the FOLIO community.
	&lt;ul&gt;
		&lt;li&gt;What happens when issues are identified?
		&lt;ul&gt;
			&lt;li&gt;Notification/alerting mechanisms?&#160; Email? Slack? Other?&lt;/li&gt;
			&lt;li&gt;Automatic JIRA creation?&lt;/li&gt;
			&lt;li&gt;Automatic PR creation?&lt;/li&gt;
			&lt;li&gt;Something else?&lt;/li&gt;
		&lt;/ul&gt;
		&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
	&lt;li&gt;Use Snyk!&lt;/li&gt;
&lt;/ul&gt;
</description>
                <environment></environment>
        <key id="79774">FOLIO-3622</key>
            <summary>Snyk Developer Security Platform</summary>
                <type id="10002" iconUrl="https://folio-org.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10322?size=medium">New Feature</type>
                            <parent id="79765">FOLIO-3582</parent>
                                    <priority id="10002" iconUrl="https://dev.folio.org/assets/jira-priority/jira-p3.svg">P3</priority>
                        <status id="1" iconUrl="https://folio-org.atlassian.net/images/icons/statuses/open.png" description="The issue is open and ready for the assignee to start work on it.">Open</status>
                    <statusCategory id="2" key="new" colorName="blue-gray"/>
                                    <resolution id="-1">Unresolved</resolution>
                                                        <assignee accountid="-1">Unassigned</assignee>
                                                                <reporter accountid="5cf6c546b87c300f36eb7b9a">Craig McNally</reporter>
                                    <labels>
                            <label>security</label>
                            <label>security-reviewed</label>
                    </labels>
                <created>Mon, 31 Oct 2022 12:21:02 +0000</created>
                <updated>Thu, 30 Nov 2023 16:41:53 +0000</updated>
                                                                                <due></due>
                            <votes>0</votes>
                                    <watches>1</watches>
                                                                    <issuelinks>
                            <issuelinktype id="10003">
                    <name>Relates</name>
                                                                <inwardlinks description="relates to">
                                        <issuelink>
            <issuekey id="82544">FOLIO-3709</issuekey>
        </issuelink>
                            </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10000" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummarycf">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10057" key="com.atlassian.jira.plugin.system.customfieldtypes:select">
                        <customfieldname>Development Team</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10168"><![CDATA[None]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10014" key="com.pyxis.greenhopper.jira:gh-epic-link">
                        <customfieldname>Epic Link</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue key="$xmlutils.escape($text)">Security checks, reviews, and fitness functions</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10063" key="com.atlassian.jira.plugin.system.customfieldtypes:float">
                        <customfieldname>PO Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10019" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0|i05oo3:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10020" key="com.pyxis.greenhopper.jira:gh-sprint">
                        <customfieldname>Sprint</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    </customfields>
    </item>
</channel>
</rss>