Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

APP.4.4.A2 #28

Closed
sluetze opened this issue Nov 7, 2023 · 5 comments
Closed

APP.4.4.A2 #28

sluetze opened this issue Nov 7, 2023 · 5 comments
Assignees
@sluetze
Labels
not-checkable Requirement can not be checked with Compliance Operator org-only This Requirement of BSI is ONLY an organizational Requirement

Comments

@sluetze
Copy link

sluetze commented Nov 7, 2023

No description provided.

@sluetze sluetze added the org-only This Requirement of BSI is ONLY an organizational Requirement label Dec 12, 2023
@sluetze
Copy link
Author

sluetze commented Dec 12, 2023
edited
Loading

Automating the operation of applications in Kubernetes using CI/CD MUST ONLY take place
after appropriate planning. The planning MUST cover the entire lifecycle from commissioning
to decommissioning, including development, testing, operation, monitoring, and updates. A
roles and rights concept and the securing of Kubernetes Secrets MUST be part of the planning.

- No Check Possible

@sluetze sluetze moved this from Todo to Evaluation in sig-bsi-grundschutz tracking Dec 13, 2023
@sluetze sluetze added the not-checkable Requirement can not be checked with Compliance Operator label Dec 13, 2023
@sluetze
Copy link
Author

sluetze commented Dec 13, 2023

Since this requirement is completely a "planning" one and we cant technically check it, we will only provide a description, that this is not checkable in the notes section.

@benruland @oliverbutanowitz @ermeratos ACK?

@benruland
Copy link

Agreed!

@sluetze sluetze self-assigned this Dec 14, 2023
@sluetze sluetze moved this from Evaluation to Implementation in sig-bsi-grundschutz tracking Jan 5, 2024
@sluetze
Copy link
Author

sluetze commented Jan 5, 2024

implemented in Branch A3, since this is only a notes commit

@sluetze sluetze moved this from Implementation to Upstream PR in sig-bsi-grundschutz tracking Jan 30, 2024
@sluetze sluetze moved this from Upstream PR to Done in sig-bsi-grundschutz tracking Mar 15, 2024
@sluetze
Copy link
Author

sluetze commented Mar 15, 2024

ComplianceAsCode#11501 was merged

@sluetze sluetze closed this as completed Mar 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@sluetze sluetze

Labels
not-checkable Requirement can not be checked with Compliance Operator org-only This Requirement of BSI is ONLY an organizational Requirement
Projects
sig-bsi-grundschutz tracking
Status: Done
Milestone
No milestone
Development

When branches are created from issues, their pull requests are automatically linked.

app-4-4-A1to3 sig-bsi-grundschutz/content
2 participants
@benruland @sluetze