►
From YouTube: Security Policies Weekly Discussion | May 23 2023
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
A
On
the
computer,
all
right
check
on
that
all
right,
I,
don't
see
anything
listed
for
demos,
I'll
jump
on
into
planning
breakdown,
I,
don't
think,
there's
a
whole
lot
to
share
my
screen
on,
but
I'll
do
that
anyway.
A
So,
looking
at
add
rule
mode,
support
for
custom,
CI
variables
and
I
know
we
had
some
some
questions
from
Alex
about
this
in
our
planning
meeting.
Oh
I've
got
our
videos
here
and
we
were
still
kind
of
going
through
solution,
validation,
so
I
got
feedback
from
solution.
Validation
shared
a
note
here
just
today
with
a
link
to
the
solution,
validation,
everyone
was
able
to
complete
the
task
for
this
particular
Epic.
There
were
some
I
think
some
questions
about
or
I
guess
we're
kind
of
watching
them
go
through
the
flow.
A
Some
some
stumbled
a
bit
on
finding
the
custom
key
creation
step,
but
that
that
seems
like
something
maybe
we
can
improve
on
in
the
future
that
it
was
still
achievable
and
everyone
rated
it
well
ready.
The
task
well
so
I
think
we're
good
to
move
forward.
This
is
ultimately
just
updating
the
the
roll
mode
support.
You
know,
there's
the
front
end
UI
aspects.
A
This
is
already
available
in
yaml
and
we
would
have
an
option
to
add
the
like
default
variable
options
or
you
can
create
a
custom
key
and
create
a
kind
of
key
pair
value
that
would
overwrite
the
project.
Cicd
file
order
settings
so
I
think
we're
good
to
go
on
that.
One
just
wanted
to
highlight
it
here:
any
questions
or
feedback.
B
A
A
Yeah,
so
if
you
take
a
look
at-
oh
that's
not
that
it's
this
dog
page,
this
Maps
back
to
like,
if
you're,
using
a
SAS
if
you're
setting
it
up
for
a
SAS
or
in
this
case
this
is
dust
but
I-
think
these
I
think
these.
Actually
these
variables
map
to
at
least
a
SAS-
maybe
they
do
for
for
das
as
well,
but
if
you're,
taking
a
look
at
the
SAS,
docs
you'll
see
the
existing
variables
default
variables.
A
Here,
let's
see
how
maybe
ant
home
applies
across
as
well
now
yeah
we're
only
looking
at
sast.
A
Okay,
here
we
go
so
I
think
we'd
have
to
map
back
to
each
of
the
docs
pages.
A
A
All
right,
then,
we
can
move
to
other
discussions.
Andy
you're
up.
C
C
Like
security,
orchestration
policy
rules
schedule
it's
a
pretty
long
name,
so
yeah
I
was
wondering
if
we
can
find
a
way
to
make
shorter
names
and
also
created
an
issue
just
now,
if
you
can
add
it
to
the
doc
as
well,
yeah
that
we
can
use
as
a
spike
or
just
to
collect
ideas,
yeah.
So
looking
forward
to
get
some
feedback
on
that
I'll
I'll.
Add
the
link
to
it
right
now.
A
A
The
only
other
item
I
had
here
so
I
had
a
coffee
chat
with
Marcus,
and
we
were
talking
talked
a
little
bit
about
test
testing
or
test
environments
and
I've
been
kind
of
curious
about
this
as
well
like.
If
we
have
a
particular
support
issue
or
customer
requests
and
we're
trying
to
validate
some,
how
some
of
the
behavior
works,
it
can
be
quite
a
lift
to
just
get
an
environment
that
is
properly
set
up.
I'll
have
it
I
have
like
my
own
demo
environment.
A
But
what
can
happen
is
that
is
in
a
certain
State
and
I
need
to
get
it
into
completely
different
states.
So
I
have
to
like
would
have
to
completely
undo
things
or
remove
things,
and
so
it
kind
of
it
throws
things
off.
So
I
think
it
would
be
really
helpful
if
it
was
possible
to
just
like
spin
up
something
that
has
you
know
everything
in
a
starting
State
like
maybe
we
have.
A
You
know
a
certain
structure
where
we
have
subgroups
development
projects
like
in
I,
guess
in
the
proper
structure
to
be
able
to
to
quickly
set
up
a
new
policy
and
test
Behavior.
So
I
don't
know,
maybe
that
exists.
I
haven't
seen
any
any
like
demos
yet
on
how
we're
using
our
our
current
tests,
but
that
could
be
could
be
interesting
to
see
in
the
future.
So
no
explicit
ask
here,
but
thought
it'd
be
good
just
to
raise
and
see
if
others
are
having
similar
challenges.
C
Yeah
yeah
I
have
this
this
problem
too
I
try
to
validate
something.
It's
usually
there's
a
lot
of
setup
involved.
There's
a
lot
of
steps
to
set
everything
up,
and
sometimes
it's
not
clear
what
exactly
is
needed
for
it.
So
I
think
I
think
we
had
some
test
projects
in
our
group
yeah,
but
I
think
they
having
a
better
structure
for
this
and
maybe
like
some
kind
of
documentation
to
show
what
project
does
what
and
that
will
be.
That
will
be
great
yeah.
A
I
think
and
I
think
the
tests
that
we
have,
which
are
extremely
useful
but
they're,
I,
think
they're
kind
of
like
unit
tests
or
I
think
we're
working
towards
end-to-end
tests,
but
they're
part
of
the
pipeline
like
we're,
checking
to
make
sure
nothing
changed
versus
it's
not
necessarily
usable
to
go
and
do
like
a
manual.
A
You
know
tests
to
test
particular
Behavior
per
se,
maybe
I'm
wrong,
but
that's
just
kind
of
the
sense
I
got
it's
like
if
I
want
to
just
like
spin
up
an
entirely
new
group
sub
some
subgroups
some
projects,
some
security
policy
projects
already
created,
like
that's
I,
don't
think.
There's
anything
that
exists
today
to
be
able
just
to
kind
of
get
to
us
like
phase
one
and
then
let's
go
create
this
new
policy
that
we
wanted
to
validate
you'd
kind
of
have
to
go
and
kind
of
figure
out
what
state
you're
in
right.
C
Thank
you.
I
just
found
that
there's
a
Sandbox
Group,
which
has
some
test
projects
yeah
the
processor
named
like
test
case
one
so
right.
A
C
I
think
it's
not
super
and
also
the
readme
is
not
seems
like
it's
just
the
default
readme,
so
it
doesn't
explain
so
it
seems
like
this
are
some
test
cases,
but
it
doesn't
say
what
test
cases
are
tested,
but
maybe
that's
the
starting
point.
Yeah.
A
I
think
this
is
a
starting
point.
I
think
Alan
could
speak
to
it
a
lot
further
I.
Just
wonder
if
it's
kind
of
a
different
kind
of
a
different
case,
it's
in
and
of
itself,
then,
when
I'm
throwing
out
there,
but
maybe
maybe
they'll
they'll
pair
together
at
some
point
here.
B
So
these
these
sandbox
repo
corresponds
to
the
test
cases
that
we
did
for
the
okrs.
B
So
there
is
a
separate
repo
where
we
have
all
the
videos
recorded
and
all
the
steps
you
need
to
take
to
accomplish
certain
scenario
like,
for
example,
to
set
up
a
secret
detection,
and
so
Andy
were
referring
to
this
sandbox
with
test
cases,
and
these
we're
used
to
record
those
videos
but
yeah
I
think
there
is
no
specific
structure
that
we
can
use
for
for
our
manual
testing
and
yeah
I
agree.
B
This
would
be
helpful
in
some
cases,
not
so
easy
to
just
create
a
project
and
do
a
few
clicks
and
have
the
situation
ready
for
for
our
test.
So
yeah.
A
A
So
that
is
a
good
question
is
if,
as
were
as
we're
developing
new
features,
are
we
adding
back
the
test
cases
into
this
project?
I?
Think
I
know
there
was
an
initiative
there,
but
are
we
consistent
and
also
just
adding
the
individual
test
cases
I
think
that's.
That
will
be
important
if
we
start
adding
new
features
and,
and
things
start
you
know
start
to
Break,
so
that's
yeah,
so
there's
two.
Definitely
two
threads
here
to
pull
on
I.
Think.
A
A
Cool
any
final
thoughts
on
this
discussion
topic
or
any
other
I
guess
other
topics.
A
All
right
cool,
well,
it's
good
to
see
everyone's
faces
and
take
care,
have
a
good
rest
of
your
week
appreciate
it
thanks
same
to
you,
bye-bye.