Versions Compared

Old Version 1

changes.mady.by.user William Reehil

Saved on

compared with

New Version Current

changes.mady.by.user William Reehil

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

AAI-2677
Requirementcommitment & strategy 
Document current upgrade component strategy

Frankfurt Documentation shows AAI documentation update & status

Jira
serverONAP JIRA
serverId425b2b0a-557c-3c0c-b515-579789cceedb
keyAAI-2702

SECCOM Perform Software Composition Analysis - Vulnerability tables

AAI will work with Pawel Pawlak SECCOM for the security vulnerability  

Jira
serverONAP JIRA
columnskey,summary,type,created,updated,due,assignee,reporter,priority,status,resolution
serverId425b2b0a-557c-3c0c-b515-579789cceedb
keyAAI-2698

SECCOM Password removal from OOM HELM charts

N/A

Image AddedREQ-380 - ONAP container repository (nexus) must not contain upstream docker images TO DO

No Community Commitment As of 7/9

Image AddedREQ-379 - ONAP projects must use only approved and verified base images for their containers TO DO

No Community Commitment As of 7/9

Image AddedREQ-366 - Containers must crash properly when a failure occurs TO DO

AAI currently satisfies

Image AddedREQ-365 - Containers must have no more than one main process TO DO

AAI currently satisfies

Image AddedREQ-362 - All containers must run as non-root user TO DO

AT&T delivered this update for Guilin

Image AddedREQ-361 - Continue hardcoded passwords removal TO DO

No Community Commitment As of 7/9

Image AddedREQ-351 - ONAP must complete update of the java language (from v8 -> v11) TO DO

No Community Commitment As of 7/9

Multi-tenancy use case folks (amdocs/yoppworks) may take this work

Image AddedREQ-349 - Each ONAP project shall define code coverage improvements and achieve at least 55% code coverage TO DO

No Community Commitment As of 7/9

Image AddedREQ-323 - Each project will update the vulnerable direct dependencies in their code base TO DO

Updated SV Documentation for GuilinSECCOM HTTPS communication vs. HTTP

All interfaces are secured with TLS except for elastic search, which we plan to move to a TLS capable version

Jira
serverONAP JIRA
columnskey,summary,type,created,updated,due,assignee,reporter,priority,status,resolution
serverId425b2b0a-557c-3c0c-b515-579789cceedb
key