summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorKrzysztof Opasiak <k.opasiak@samsung.com>2019-06-05 23:59:38 +0200
committerKrzysztof Opasiak <k.opasiak@samsung.com>2019-06-05 23:59:38 +0200
commitc2792b0c133098f31022a69fb45bffc8f5518405 (patch)
tree81ccc61003df00ee00165c4e0a3c1512b90ee94a
parenteae91ebedd383b0c3ffe3dea166f6c6136dbdf38 (diff)
Improve security release notes
In order to provide users with more details of project's state in terms of security let's divide the security release notes into three sections: - Fixed Security Issues Contains a list of security fixes merged during this release (especially those reported via OJSI tickets). - Known Security Issues Contains a list of vulnerabilities detected in project during release which have not been fixed yet and thus should be mitigated by the user. - Known Vulnerabilities in Used Modules Contains information about NexusIQ scan results Issue-ID: SECCOM-238 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I1995c594df294cd5235fcae62b6f3755f60f9216
-rw-r--r--docs/sections/release-notes.rst8
1 files changed, 7 insertions, 1 deletions
diff --git a/docs/sections/release-notes.rst b/docs/sections/release-notes.rst
index 2cca5d1..22c6b4b 100644
--- a/docs/sections/release-notes.rst
+++ b/docs/sections/release-notes.rst
@@ -42,6 +42,12 @@ The Dublin release for OOF delivered the following Epics.
**Security Notes**
+*Fixed Security Issues*
+
+*Known Security Issues*
+
+*Known Vulnerabilities in Used Modules*
+
OPTFRA osdf code has been formally scanned during build time using NexusIQ and no Critical vulnerability was found.
The OPTF open Critical security vulnerabilities and their risk assessment have been documented as part of the `project <https://wiki.onap.org/pages/viewpage.action?pageId=64005463>`_.
@@ -113,7 +119,7 @@ A summary of features includes
* Platform Maturity Level 1
* ~65.1+ unit test coverage
-
+
The Casablanca release for OOF delivered the following Epics.
* [OPTFRA-273] - Epic Name: OOF Casablanca S3P Manageability enhancement