Page History

Harbor feedback from TSC

Security Documentation – Harald

Service Mesh progress

Honolulu security requirements

Integration Testing – Sylvain

#1 Establish the list of enforcements planned for Guilin through the OOM gating

• REQ-361 Automated certificate retrieval including HTTPS enablement
• REQ-362 All containers must run as non root
• REQ-373 Python 3.8 support – enforcement after notification from the PTLs that migration complete
• REQ 351 Java Language 11 support – enforcement after notification from the PTLs that migration complete

#2Timeline for enforcement

• When project teams report development completion of enforceable Guilin requirements
• No later than M4 Guilin (Code completion) - Guilin Impact View per Component

#3 Establish a grace period so PTLs can communicate to their projects team

Service Mesh POC – Sylvain

• Automated deployment of Istio, CertManager, KeyCloak
• Analyzing ONAP components for inclusion: Dmaap, AAI, etc
• CertManager can use ACME, Venafi, Vault, self signed certs, external CA

Harbor presentation to TSC – Fabian

• Solene to present to TSC 23/7

REQ-376

Flow Management – Fabian

• https://wiki.onap.org/display/DW/Service+Mesh+PoC+plan
• AP: Fabian will provide the above link to the PTLs to collect detailed flow information

Vulnerable package upgrade – Amir

Jackson databind upgrades complete for SDC – did not require much work

• 2.x -> 2.11: no code changes
• 1.x -> 2.11: minor code changes

Topics proposed: