From cf030ca1ff6fea8b05521c80b301d6030c48cf1a Mon Sep 17 00:00:00 2001 From: Aditya Sirish Date: Mon, 1 Jul 2024 18:19:30 -0400 Subject: [PATCH 1/6] Add just one turtle Signed-off-by: Aditya Sirish --- _data/data.yml | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/_data/data.yml b/_data/data.yml index f5602a0..839bb4d 100644 --- a/_data/data.yml +++ b/_data/data.yml @@ -944,6 +944,16 @@ projects: - *justin_cappos tags: - *security + - &jot + name: "Just One Turtle" + anchor: "just-one-turtle" + status: *starting + description: "The 2020 SolarWinds attack highlighted severe supply chain risks in software development. The attackers compromised SolarWinds’ Orion software update process, leading to widespread and complex cyberattacks on numerous federal institutions and companies, including Microsoft. This incident underscores the urgent need for secure and isolated operational environments. The “Just One Turtle” plan aims to enhance software resilience by leveraging the Lind sandbox and Intel SGX to create highly secure computing environments for critical operations." + people: + - *yuchen_zhang + - *justin_cappos + tags: + - *security - &taf name: "The Archive Framework (TAF)" @@ -1257,6 +1267,7 @@ projects: - *uptane - *in-toto - *gittuf + - *jot - *taf - *cachecash - *lind From 23b091053e54e40677262098c15498013175f7e8 Mon Sep 17 00:00:00 2001 From: Aditya Sirish Date: Mon, 1 Jul 2024 18:25:20 -0400 Subject: [PATCH 2/6] Add GH pages draft This adds a GHA workflow to publish the site to github actions. We'll add the .yml prefix when we're ready to host on github pages. Signed-off-by: Aditya Sirish --- .github/workflows/pages | 62 +++++++++++++++++++++++++++++++++++++++++ 1 file changed, 62 insertions(+) create mode 100644 .github/workflows/pages diff --git a/.github/workflows/pages b/.github/workflows/pages new file mode 100644 index 0000000..2972782 --- /dev/null +++ b/.github/workflows/pages @@ -0,0 +1,62 @@ +# This workflow uses actions that are not certified by GitHub. +# They are provided by a third-party and are governed by +# separate terms of service, privacy policy, and support +# documentation. + +# Sample workflow for building and deploying a Jekyll site to GitHub Pages +name: Deploy Jekyll site to Pages + +on: + push: + branches: ["master"] + + # Allows you to run this workflow manually from the Actions tab + workflow_dispatch: + +# Sets permissions of the GITHUB_TOKEN to allow deployment to GitHub Pages +permissions: + contents: read + pages: write + id-token: write + +# Allow one concurrent deployment +concurrency: + group: "pages" + cancel-in-progress: true + +jobs: + # Build job + build: + runs-on: ubuntu-latest + steps: + - name: Checkout + uses: actions/checkout@v3 + - name: Setup Ruby + uses: ruby/setup-ruby@v1 + with: + ruby-version: '3.1' # Not needed with a .ruby-version file + bundler-cache: true # runs 'bundle install' and caches installed gems automatically + cache-version: 0 # Increment this number if you need to re-download cached gems + - name: Setup Pages + id: pages + uses: actions/configure-pages@v3 + - name: Build with Jekyll + # Outputs to the './_site' directory by default + run: bundle exec jekyll build --baseurl "${{ steps.pages.outputs.base_path }}" + env: + JEKYLL_ENV: production + - name: Upload artifact + # Automatically uploads an artifact from the './_site' directory by default + uses: actions/upload-pages-artifact@v1 + + # Deployment job + deploy: + environment: + name: github-pages + url: ${{ steps.deployment.outputs.page_url }} + runs-on: ubuntu-latest + needs: build + steps: + - name: Deploy to GitHub Pages + id: deployment + uses: actions/deploy-pages@v2 From 9104e59f01d4e8f8acb7f383fe5606d102a50575 Mon Sep 17 00:00:00 2001 From: Aditya Sirish Date: Mon, 1 Jul 2024 21:03:46 -0400 Subject: [PATCH 3/6] Remove .html suffix Signed-off-by: Aditya Sirish --- _includes/header.html | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/_includes/header.html b/_includes/header.html index d1a3f37..d94462b 100644 --- a/_includes/header.html +++ b/_includes/header.html @@ -10,9 +10,9 @@
@@ -23,10 +23,10 @@
From 4159f10026e87485ef2d7e1daf1cb155db6023a8 Mon Sep 17 00:00:00 2001 From: Aditya Sirish Date: Mon, 1 Jul 2024 21:04:25 -0400 Subject: [PATCH 4/6] Add posts for Git and Reproducible Builds Signed-off-by: Aditya Sirish --- _posts/2024-07-01-contributions-to-git.md | 9 +++++++++ .../2024-07-01-contributions-to-reproducible-builds.md | 9 +++++++++ 2 files changed, 18 insertions(+) create mode 100644 _posts/2024-07-01-contributions-to-git.md create mode 100644 _posts/2024-07-01-contributions-to-reproducible-builds.md diff --git a/_posts/2024-07-01-contributions-to-git.md b/_posts/2024-07-01-contributions-to-git.md new file mode 100644 index 0000000..3b99e91 --- /dev/null +++ b/_posts/2024-07-01-contributions-to-git.md @@ -0,0 +1,9 @@ +--- +layout: article +title: "Our Contributions to Git" +subnav: blog +comments: false +author: 'Justin Cappos' +--- + +Content coming soon. diff --git a/_posts/2024-07-01-contributions-to-reproducible-builds.md b/_posts/2024-07-01-contributions-to-reproducible-builds.md new file mode 100644 index 0000000..d4a09c9 --- /dev/null +++ b/_posts/2024-07-01-contributions-to-reproducible-builds.md @@ -0,0 +1,9 @@ +--- +layout: article +title: "Our Contributions to Reproducible Builds" +subnav: blog +comments: false +author: 'Justin Cappos' +--- + +Content coming soon. From ce6395a4925886a3b8d12523b449d460d59e0f4f Mon Sep 17 00:00:00 2001 From: Aditya Sirish Date: Mon, 1 Jul 2024 21:12:03 -0400 Subject: [PATCH 5/6] lwn gittuf Signed-off-by: Aditya Sirish --- _data/data.yml | 9 +++++++++ personalpages/jcappos/press.htm | 2 +- 2 files changed, 10 insertions(+), 1 deletion(-) diff --git a/_data/data.yml b/_data/data.yml index 839bb4d..71221d5 100644 --- a/_data/data.yml +++ b/_data/data.yml @@ -3004,6 +3004,15 @@ press: presses: + - title: "Securing Git repositories with gittuf" + link: "https://lwn.net/Articles/972467/" + anchor: lwngittuf + type: article + projects: + - *gittuf + source: "LWN" + date: "May 8, 2024" + - title: "Introducing gittuf: A Security Layer for Git Repositories" link: "https://openssf.org/blog/2024/01/18/introducing-gittuf-a-security-layer-for-git-repositories/" anchor: openssfgittuf diff --git a/personalpages/jcappos/press.htm b/personalpages/jcappos/press.htm index bb27f13..14221c9 100644 --- a/personalpages/jcappos/press.htm +++ b/personalpages/jcappos/press.htm @@ -635,7 +635,7 @@

Quick links

"Securing Git repositories with gittuf" Article -(press coverage related to TUF)
+(press coverage related to gittuf)
LWN, May 2024.

From c2b5427a6e71fc6b53cfaa8f114696dd4126fda4 Mon Sep 17 00:00:00 2001 From: Aditya Sirish Date: Mon, 1 Jul 2024 21:12:59 -0400 Subject: [PATCH 6/6] fix lwn name Signed-off-by: Aditya Sirish --- _data/data.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/_data/data.yml b/_data/data.yml index 71221d5..83a8d17 100644 --- a/_data/data.yml +++ b/_data/data.yml @@ -3010,7 +3010,7 @@ press: type: article projects: - *gittuf - source: "LWN" + source: "LWN.net" date: "May 8, 2024" - title: "Introducing gittuf: A Security Layer for Git Repositories"