akanealw
eec8c28fb3
Some checks are pending
Go Benchmark / Performance Regression Check (push) Waiting to run
Cerberus Integration / Cerberus Security Stack Integration (push) Waiting to run
Upload Coverage to Codecov / Backend Codecov Upload (push) Waiting to run
Upload Coverage to Codecov / Frontend Codecov Upload (push) Waiting to run
CodeQL - Analyze / CodeQL analysis (go) (push) Waiting to run
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Waiting to run
CrowdSec Integration / CrowdSec Bouncer Integration (push) Waiting to run
Docker Build, Publish & Test / build-and-push (push) Waiting to run
Docker Build, Publish & Test / Security Scan PR Image (push) Blocked by required conditions
Quality Checks / Auth Route Protection Contract (push) Waiting to run
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Waiting to run
Quality Checks / Backend (Go) (push) Waiting to run
Quality Checks / Frontend (React) (push) Waiting to run
Rate Limit integration / Rate Limiting Integration (push) Waiting to run
Security Scan (PR) / Trivy Binary Scan (push) Waiting to run
Supply Chain Verification (PR) / Verify Supply Chain (push) Waiting to run
WAF integration / Coraza WAF Integration (push) Waiting to run
117 lines
3.0 KiB
YAML
Executable File
117 lines
3.0 KiB
YAML
Executable File
name: 🔐 Beta Security Feature
|
|
description: Create an issue for a Beta milestone security feature
|
|
title: "[BETA] [SECURITY] "
|
|
labels: ["beta", "feature", "security"]
|
|
body:
|
|
- type: markdown
|
|
attributes:
|
|
value: |
|
|
## Beta Security Feature
|
|
Advanced security features for the beta release.
|
|
|
|
- type: dropdown
|
|
id: priority
|
|
attributes:
|
|
label: Priority
|
|
description: How critical is this security feature?
|
|
options:
|
|
- Critical (Essential security control)
|
|
- High (Important protection)
|
|
- Medium (Additional hardening)
|
|
- Low (Nice-to-have security enhancement)
|
|
validations:
|
|
required: true
|
|
|
|
- type: dropdown
|
|
id: security_category
|
|
attributes:
|
|
label: Security Category
|
|
description: What type of security feature is this?
|
|
options:
|
|
- Authentication & Access Control
|
|
- Threat Protection
|
|
- SSL/TLS Management
|
|
- Monitoring & Logging
|
|
- Web Application Firewall
|
|
- Rate Limiting
|
|
- IP Access Control
|
|
validations:
|
|
required: true
|
|
|
|
- type: input
|
|
id: issue_number
|
|
attributes:
|
|
label: Planning Issue Number
|
|
description: Reference number from PROJECT_PLANNING.md (e.g., Issue #15)
|
|
placeholder: "Issue #"
|
|
validations:
|
|
required: false
|
|
|
|
- type: textarea
|
|
id: description
|
|
attributes:
|
|
label: Feature Description
|
|
description: What security capability should this provide?
|
|
placeholder: Describe the security feature and its purpose
|
|
validations:
|
|
required: true
|
|
|
|
- type: textarea
|
|
id: threat_model
|
|
attributes:
|
|
label: Threat Model
|
|
description: What threats does this feature mitigate?
|
|
placeholder: |
|
|
- Threat 1: Description and severity
|
|
- Threat 2: Description and severity
|
|
validations:
|
|
required: false
|
|
|
|
- type: textarea
|
|
id: tasks
|
|
attributes:
|
|
label: Implementation Tasks
|
|
description: List of tasks to complete this feature
|
|
placeholder: |
|
|
- [ ] Task 1
|
|
- [ ] Task 2
|
|
- [ ] Task 3
|
|
value: |
|
|
- [ ]
|
|
validations:
|
|
required: true
|
|
|
|
- type: textarea
|
|
id: acceptance
|
|
attributes:
|
|
label: Acceptance Criteria
|
|
description: How do we verify this security control works?
|
|
placeholder: |
|
|
- [ ] Security test 1
|
|
- [ ] Security test 2
|
|
value: |
|
|
- [ ]
|
|
validations:
|
|
required: true
|
|
|
|
- type: checkboxes
|
|
id: special_labels
|
|
attributes:
|
|
label: Special Categories
|
|
description: Select all that apply
|
|
options:
|
|
- label: SSO (Single Sign-On)
|
|
- label: WAF (Web Application Firewall)
|
|
- label: CrowdSec Integration
|
|
- label: Plus Feature (Premium)
|
|
- label: Requires Documentation
|
|
|
|
- type: textarea
|
|
id: security_testing
|
|
attributes:
|
|
label: Security Testing Plan
|
|
description: How will you test this security feature?
|
|
placeholder: Describe testing approach, tools, and scenarios
|
|
validations:
|
|
required: false
|