diff options
| author | Christopher Baines <mail@cbaines.net> | 2021-04-03 11:01:50 +0100 |
|---|---|---|
| committer | Christopher Baines <mail@cbaines.net> | 2021-04-03 11:01:50 +0100 |
| commit | e6ad95fa703d0aeb41d46f9402e6d35c7e575689 (patch) | |
| tree | 06a4d667fa70e44827f34e9dd8ca16b1fafea757 | |
| parent | be64f1e68e87d1c568389933da2a6ba76a764fcf (diff) | |
| download | tooling-to-improve-security-and-trust-master.tar tooling-to-improve-security-and-trust-master.tar.gz | |
| -rw-r--r-- | README.org | 14 |
1 files changed, 7 insertions, 7 deletions
@@ -36,8 +36,8 @@ completely solved, but definitely an area where value can be added. As a community run free software project, this is especially important. Lots of people are more involved with these areas than me, -so it’s important to reach out to them and involve them in the work -I’m planning. +so it's important to reach out to them and involve them in the work +I'm planning. Milestones: @@ -46,7 +46,7 @@ Milestones: ** Implement initial improvements in and around the Guix Data Service -The Guix Data Service stores data about Guix, but it’s not currently +The Guix Data Service stores data about Guix, but it's not currently aware of grafts, which are an approach often used to provide security fixes to users. For the Guix Data Service to provide accurate data on potential security issues, it needs to be aware of grafts, so that it @@ -80,8 +80,8 @@ Milestones: ** Setup project focused security monitoring and issue tracking -There’s currently some tooling for monitoring and tracking security -issues, but I think there’s lots of room for improvement. Making +There's currently some tooling for monitoring and tracking security +issues, but I think there's lots of room for improvement. Making security issues more visible should mean addressing them is easier and happens faster. @@ -93,7 +93,7 @@ Milestones: ** Research and implement user security monitoring tooling As a user of Guix, you might want to be able to check the security -status of the software you’re using, or get notifications when that +status of the software you're using, or get notifications when that changes. This subtask looks at this area. Milestones: @@ -130,7 +130,7 @@ Milestones: Guix can be seen as a compoent in a software “supply chain”, and there may be approaches that allow verification or corroberation of the materials coming in on this “supply chain” to Guix, which in turn -improves the security of Guix for it’s users. +improves the security of Guix for it's users. Milestones: |