2022-07-28 Meeting notes
Date
Attendees
Name | Present |
---|---|
N | |
N | |
Y | |
Y | |
N | |
N | |
Y | |
Discussion items
Time | Item | Who | Notes |
---|---|---|---|
mod-configuration - should it be deprecated or not? | mod-configuration has been discussed on the development channel recently. Developers like it because they can simply drop variables to the /configurations/entries API. Simply use the "configuration.*" permission shared by all modules and you are done. No need to add schema validation, no need to add dedicated permissions, no need to add a dedicated API.
Team decided we want to have this as a RFC. Target should be to have this implemented within Nolana. Could discuss in your meetings while the RFC process moves on.
Today:
| ||
Kafka security | Team | The topic of Kafka security was raised as part of a conversation at the TC yesterday. The Security Team should be aware of this and probably should weigh in on the topic, or even generate proposals if we have ideas for how to solve the problem.
| |
* | Review the Kanban board. | Team |
|
OWASP | Team | Jakub Skoczen raised the idea of evaluating if FOLIO meets these standards. Ryan Berger has run some tools a while back, but it's probably time to revisit, and maybe take it further.
Today:
|
Action items
- Craig McNally will create the ticket and we can revisit in a future meeting (next week or two)
- Ryan Berger to dig up the findings from the previous run of Zap
- Craig McNally will reach out to Slava K. wrt the behavior of edge-common-spring in the context of EDGCOMMON-52/53