summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorGildas Lanilis <gildas.lanilis@huawei.com>2018-05-30 13:48:41 -0700
committerGildas Lanilis <gildas.lanilis@huawei.com>2018-05-31 12:23:27 -0700
commit45c5103335aa3d4cc6374243ee359a8c7a9ff813 (patch)
tree1310a0f6f3ef62fadca6d5616d3cdae833a33d0a
parent8934b127d53e4a84cdfb38dd1751f7fab4fbb22c (diff)
Document Security section of the Release Notes
Removed trailing tabs and spaces Change-Id: Ie3c1f8133f295c81a947006c7b2e5c07bf33be65 Issue-ID: DOC-271 Signed-off-by: Gildas Lanilis <gildas.lanilis@huawei.com>
-rw-r--r--docs/releasenotes/releasenotes.rst11
1 files changed, 8 insertions, 3 deletions
diff --git a/docs/releasenotes/releasenotes.rst b/docs/releasenotes/releasenotes.rst
index b7962cb..6929ce5 100644
--- a/docs/releasenotes/releasenotes.rst
+++ b/docs/releasenotes/releasenotes.rst
@@ -9,7 +9,7 @@ Release Notes
Version: 1.0.0
--------------
-:Release Date: 2018-05-24
+:Release Date: 2018-06-07
**New Features**
@@ -46,11 +46,16 @@ For service order:
Detail of limitations described in the readTheDoc documentation.
-**Security Issues**
+**Security Notes**
-Security has not be addressed in this release:
+External API code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The External API open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=28382906>`_.
Authentication management and Data Access rights have not been implemented.
+Quick Links:
+- `External API project page <https://wiki.onap.org/display/DW/External+API+Framework+Project>`_
+- `Passing Badge information for External API <https://bestpractices.coreinfrastructure.org/en/projects/1771>`_
+- `Project Vulnerability Review Table for External API <https://wiki.onap.org/pages/viewpage.action?pageId=28382906>`_
+
**Upgrade Notes**
Not applicable - This is an initial release