/
2019-12-18 ODP WG Meeting notes

2019-12-18 ODP WG Meeting notes

Mar 09, 2020

Table of Contents

Date/Time

Wednesday, 2019-12-18, 12am ET

Attendees

Name

Organisation

Name

Organisation





James McLeod

FINOS

Maurizio Pillitu

FINOS

Colin Eberhardt

ScottLogic

Rhys Arkins

WhiteSource

Andrew Fadairo

Individual contributor

Rob Underwood

FINOS

Ace Akturk

WhiteSource

Outstanding Action Items





Agenda

Time 

Item

Who

Notes from the Meeting

Time 

Item

Who

Notes from the Meeting

5 mins

Convene & Roll Call

@Maurizio Pillitu



5 mins

Retrospective on current sprint

Group



10 mins

Next Sprint priorities

Group



10 mins

Cleanup outstanding action items

Group

If items are discussed and part of the sprint, they can be marked as done; otherwise, create ODP story for each item, before checking it

10mins

WhiteSource rollout

Group

  • How to complete datahelix setup (ie, fork the project and test there?).

  • Plan actions for rolling out on next projects

  • Questions: when a CVE is solved, GitHub Issues must be manually closed, correct? And what if a GitHub Issue (created by WhiteSource) is manually marked as closed, but the vulnerability is still there? What happens in that case, a new issue is created or the existing one is reopened?

10 mins

Backlog scrubbing

Group



5

AOB & adjourn

Group



Action Items

Start rollout for Plexus repos. @James McLeod (Unlicensed) and @Maurizio Pillitu
Whitesource will get back re. the datahelix issue (mao will get notified)
FINOS discusses internally if/how to expose support@whitesourcesoftware.com to FINOS members (WS can associate requests to FINOS depending on the scope; ie. if a repo on github.com/finos is linked) - @Rob Underwood (Deactivated)@Maurizio Pillitu@James McLeod (Unlicensed)
Document: WhiteSource integration does NOT mark issues as fixed, if fix is applied manually
Mao to look into WhiteSource PR automatic fix - https://www.whitesourcesoftware.com/whitesource-remediate/ (enabled by default for github.com integration)
Create an issue template for new ODP suggestion into https://github.com/finos/open-developer-platform/issues (see cloud service certification as example
Plan socialization via Pan PMC and community@ email

Need help? Email help@finos.org we'll get back to you.

Content on this page is licensed under the CC BY 4.0 license.
Code on this page is licensed under the Apache 2.0 license.