-
Notifications
You must be signed in to change notification settings - Fork 491
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Project] Security Pals, Assemble! #1102
Comments
This is awesome, is there anything we can do for some of the students who participate in the program? Swag? Encourage them to apply for scholarships for kubecon etc? |
Both / either would be appreciated! There will be ~120 or so students and the quality of their work will likely vary. Let me know if you want to have any selection process, etc. for some aspects of this. I don't know how much you're thinking of doing here. I think it would be great to have t-shirts for all and maybe fast track students that participate after the end of the assignment for Kubecon scholarships... I'm open to whatever makes sense from your side. |
Great initiative @JustinCappos |
Okay, great. It will be great to have some folks from the CNCF side willing to guide parts of this. Even if it is only to help train the TAs, this will be a huge help! |
Hi all, |
Description: I'd like to run a pilot at NYU where I have a class of 100-150 students help CNCF projects get a self assessment completed. The students will work in groups and use the new Security Pals process to work with the projects.
Impact: Any CNCF projects at the graduated and incubating levels that have not either completed a self assessment (or opted out) will have a first pass at a self assessment completed. If we have enough effort, we will also extend this to cover sandbox projects.
Benefit to Ecosystem: Projects will gain an understanding of how understandable their documentation is and how welcoming their project is to newcomers, in addition to the aforementioned self assessment.
Scope: This will take a lot of effort from myself and the students at NYU, who will do this as part of a series of assignments in a graduate level introductory security class. Students will understand threat modeling and similar processes, but should not be expected to understand cloud native technologies in depth.
Note to Maintainers: The time per project for the project maintainers should be a few developer days worth of time answering questions. To help your project be successful, please be patient and welcoming when interacting with students. If you have a problem, please reach out to me sooner, rather than later and we can try to correct.
Expected Timeline: The work will be done over a duration of roughly 4 weeks (roughly mid-November - mid-December, dates TBA). Some students may want to stay engaged with projects after this period.
Ask from CNCF TOC: I would appreciate the TOC and others announcing this effort at upcoming KubeCon events to raise project awareness. I would also appreciate some CNCF communications being sent out at the start / end of this to further provide updates.
Ask from CNCF PR team: Also, NYU and the CNCF can collectively do PR related to this initiative.
Intent to lead: Justin Cappos
interested in pursing this work. This statement of intent does not preclude
others from co-leading or becoming lead in my stead.
Proposal to Project:
lead
with call for participation in #tag-security slack channel thread add link
and mailing list email add link
TO DO
Representative
see progress!
The text was updated successfully, but these errors were encountered: