...
Name | Present |
---|---|
Y | |
Y | |
Y | |
Y | |
Discussion items
Time | Item | Who | Notes | ||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
1 min | mod-configuration - should it be deprecated or not? | Julian Ladisch | mod-configuration has been discussed on the development channel recently. Developers like it because they can simply drop variables to the /configurations/entries API. Simply use the "configuration.*" permission shared by all modules and you are done. No need to add schema validation, no need to add dedicated permissions, no need to add a dedicated API.
Team decided we want to have this as a RFC. Target should be to have this implemented within Nolana. Could discuss in your meetings while the RFC process moves on.
Today:
| ||||||||
0 min | Kafka security | Team | The topic of Kafka security was raised as part of a conversation at the TC yesterday. The Security Team should be aware of this and probably should weigh in on the topic, or even generate proposals if we have ideas for how to solve the problem.
Today:
| ||||||||
5-10 min | OWASP | Team | Jakub Skoczen raised the idea of evaluating if FOLIO meets this OWASP Application Security Verification Standard. Ryan Berger has run some tools a while back, but it's probably time to revisit, and maybe take it further.
Today:
| ||||||||
10 min | Brainstorm the cumulative Cumulative upload problem | Team |
Today:
Today:
| ||||||||
5-10 min | Skott Klebe is interested in joining the Security team... thoughts? | Team | Skott is a Security professional at EBSCO that's voiced interest in joining.
| ||||||||
* | Review the Kanban board. | Team |
|
Action items
- Craig McNally will create the ticket and we can revisit in a future meeting (next week or two)