Skip to content

Plan: Software Supply Chain Insights #1743

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 2 commits into
base: main
Choose a base branch
from
Draft

Plan: Software Supply Chain Insights #1743

wants to merge 2 commits into from

Conversation

halcyondude
Copy link
Contributor

@halcyondude halcyondude force-pushed the 01790-plan-software-supply-chain-insights branch from da8dd58 to 31af975 Compare June 2, 2025 20:09
@halcyondude
Copy link
Contributor Author

This early draft for a plan is a starting point. We would like to solicit TOC feedback on it's structure, as @mfahlandt (Mario) and I iterate on additional details. Namely, how much technical implementation details should be included in this higher level plan?

@halcyondude
Plan: Software Supply Chain Insights
808b080 
This is the plan for the Software Supply Chain Insights initiative.

Related-to: cncf#1790
Signed-off-by: Matt Young <[email protected]>
@halcyondude
Update 01709_PLAN_software-supply-chain-insights.md
33a3c2f 
Call for contribution: observability projects to provide config for their solutions to help us run at scale.

Signed-off-by: Matt Young <[email protected]>
@halcyondude halcyondude force-pushed the 01790-plan-software-supply-chain-insights branch from caaf9c8 to 33a3c2f Compare July 28, 2025 15:39
@halcyondude halcyondude mentioned this pull request Aug 7, 2025
Open
evankanderson
evankanderson reviewed Aug 13, 2025
View reviewed changes
Copy link
Contributor

@evankanderson evankanderson left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'll add a few more comments later; I had this queued yesterday but failed to actually send the review.

initiatives/01709_PLAN_software-supply-chain-insights.md
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this should go in /tags/tag-security-and-compliance/initiatives/supply-chain-insights/README.md

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@halcyondude could you reconcile?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, will move and incorporate scoping changes and other feedback from our first 2 meetings as well.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@angellk angellk angellk left review comments

@evankanderson evankanderson evankanderson left review comments

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
CNCF TOC Board
Status: New
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@halcyondude @angellk @evankanderson