2020-08-14 Meeting notes
Date
Attendees
Discussion items
Time | Item | Who | Notes |
---|---|---|---|
Housekeeping - email, JIRA, etc | NO ACTION TAKEN - follow up in 2 weeks. Email alias/address security@folio.org still not working. Coordinating through Peter Murray who is working with EBSCO on other address(es). Jira configuration actions:
| ||
Review open security issues | Team | Reviewed the open issues and made some adjustments. | |
NPM Package risks/analysis | Team | Discussed potential vulnerabilities related to NPM and more broadly Java and other languages that might bring in dependencies. Additionally what types of code scanning might be possible/recommended. SonarCloud/SonarQube offers some - and some happens with Github, but are there other/better options. Ryan volunteered to look at the Javascript environment/front end. |