17.9 AST:Composition Analysis Planning Issue

• General info
  • Theme
• Priorities
  • SBOM based dependency scanning to Beta maturity
  • Feature
  • Maintenance and bugs
    • Epics
    • Standalone issues
      • Bugs
        • P1
        • P2
        • P3
        • P4
      • Other
        • Feature
        • Maintenance

General info

Theme

Main focus in getting SBOM based dependency scanning to Beta level maturity and the required steps for deprecation of Gemansiums build support.

• Period:  2024-01-11 to 2024-02-14
• Planning board
• Reaction rotation: @onaaman, @ifrenkel

Priorities

SBOM based dependency scanning to Beta maturity

---
display: table
fields: title, labels("Deliverable"), labels("workflow::*") , assignees, state
---
label = "group::composition analysis" AND label in ("DS-deprecation::CVS", "DS-deprecation::Analyzer", "DS-deprecation::Documentation", "DS-deprecation::templates")  AND milestone = "17.9"

Feature

Our typefeature work this milestone:

Issue	DRI	With
SBOM-based dependency scanning findings for non... (&14636 - closed) • Zamir Martins	@zmartins
Deprecate build support on Dependency Scanning ... (&14146 - closed) • Olivier Gonzalez	@gonzoyumo
License Scanning support for Swift (&15540 - closed) • Nick Ilieskou	@nilieskou
Spike: How might we leverage Vulnerability Reso... (#497404 - closed) • Joey Khabie • 17.8	@Joey_Khabie

Our Engineering Time work this milestone

Issue	DRI
Requirements for new report/SBOM ingestion system	@hacks4oats
EOSL data from CS + gradual type hinting experiment	@onaaman
OpenSSF scorecard for package metadata	@ifrenkel

Maintenance and bugs

Epics

Priority	Initiative	Issues	DRI
1	Issue/Epic

Standalone issues

Bugs

P1

---
display: table
fields: title, labels("Deliverable"), healthStatus, assignees, state
---
epic = none AND label = "group::composition analysis" AND label = "priority::1" AND label = "type::bug" AND label != "vulnmapper" AND milestone = "17.9"

P2

---
display: table
fields: title, labels("Deliverable"), labels("workflow::*"), healthStatus, assignees, state
---
epic = none AND label = "group::composition analysis" AND label = "priority::2" AND label = "type::bug" AND label != "vulnmapper" AND milestone = "17.9"

P3

---
display: table
fields: title, labels("Deliverable"),labels("workflow::*"), healthStatus, assignees, state
---
epic = none AND label = "group::composition analysis" AND label = "priority::3" AND label = "type::bug" AND label != "vulnmapper" AND milestone = "17.9"

P4

---
display: table
fields: title, labels("Deliverable"), labels("workflow::*"), healthStatus, assignees, state
---
epic = none AND label = "group::composition analysis" AND label = "priority::4" AND label = "type::bug" AND label != "vulnmapper" AND milestone = "17.9"

Bugs board (no vulns)

Other

Feature

---
display: table
fields: title, labels("Deliverable"), labels("workflow::*"), healthStatus, assignees, state
---
epic = none AND label = "type::feature" AND label = "group::composition analysis" AND milestone = "17.9"

Maintenance

---
display: table
fields: title, labels("Deliverable"),labels("workflow::*"), healthStatus, assignees, state
---
epic = none AND label = "type::maintenance" AND label = "group::composition analysis" AND milestone = "17.9"