Skip to content

add SECURITY_INSIGHTS.yml#662

Merged
metal3-io-bot merged 1 commit intometal3-io:mainfrom
Nordix:tuomo/add-security-insights
Feb 27, 2026
Merged

add SECURITY_INSIGHTS.yml#662
metal3-io-bot merged 1 commit intometal3-io:mainfrom
Nordix:tuomo/add-security-insights

Conversation

@tuminoid
Copy link
Member

@tuminoid tuminoid commented Feb 25, 2026
edited
Loading

Add SECURITY_INSIGHTS.yml file and GHA validator for it.

Metal3-docs repo hosts the security self-assessment which other insights files refer to.

Ref: metal3-io/community#43

metal3-io/community#44 must be merged before this. Until it does,
/hold

@tuminoid
add SECURITY_INSIGHTS.yml
766c35b 
Add SECURITY_INSIGHTS.yml file and GHA validator for it.

Signed-off-by: Tuomo Tanskanen <tuomo.tanskanen@est.tech>
@metal3-io-bot metal3-io-bot added the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Feb 25, 2026
@metal3-io-bot metal3-io-bot added the size/M Denotes a PR that changes 30-99 lines, ignoring generated files. label Feb 25, 2026
tuminoid
tuminoid commented Feb 25, 2026
View reviewed changes
SECURITY_INSIGHTS.yml
- name: dtantsur
primary: false
- name: kashifest
primary: true
Copy link
Member Author

@tuminoid tuminoid Feb 25, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

One approver must be designated primary, proposing @kashifest , opinions welcome.

@tuminoid
Copy link
Member Author

tuminoid commented Feb 25, 2026

/cc @kashifest @lentzi90 @Rozzii @dtantsur @elfosardo @zaneb
PTAL.

kashifest
kashifest reviewed Feb 25, 2026
View reviewed changes
Copy link
Member

@kashifest kashifest left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

lentzi90
lentzi90 reviewed Feb 25, 2026
View reviewed changes
Copy link
Member

@lentzi90 lentzi90 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/approve

@metal3-io-bot
Copy link
Contributor

metal3-io-bot commented Feb 25, 2026

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: lentzi90

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@metal3-io-bot metal3-io-bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Feb 25, 2026
Rozzii
Rozzii reviewed Feb 25, 2026
View reviewed changes
Copy link
Member

@Rozzii Rozzii left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@metal3-io-bot metal3-io-bot added the lgtm Indicates that a PR is ready to be merged. label Feb 25, 2026
@tuminoid
Copy link
Member Author

tuminoid commented Feb 27, 2026

/unhold

@metal3-io-bot metal3-io-bot removed the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Feb 27, 2026
@metal3-io-bot metal3-io-bot merged commit f52afd0 into metal3-io:main Feb 27, 2026
16 checks passed
@metal3-io-bot metal3-io-bot deleted the tuomo/add-security-insights branch February 27, 2026 06:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Rozzii Rozzii Rozzii left review comments

@kashifest kashifest kashifest left review comments

@adilGhaffarDev adilGhaffarDev Awaiting requested review from adilGhaffarDev

@dtantsur dtantsur Awaiting requested review from dtantsur

@zaneb zaneb Awaiting requested review from zaneb

@elfosardo elfosardo Awaiting requested review from elfosardo

+1 more reviewer

@lentzi90 lentzi90 lentzi90 left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. lgtm Indicates that a PR is ready to be merged. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@tuminoid @metal3-io-bot @lentzi90 @Rozzii @kashifest