►
From YouTube: Container Security Group Discussion 2021-08-10
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
A
You
go,
and
I
was
just
gonna
say
for
the
one
person
that
watches
this-
that
this
is
the
weekly
group
discussion
for
container
security.
B
Oh
yeah,
okay,
I'm
gonna
walk
through
the
current
designs
for
the
scan
results,
security
policies.
I
was
planning
on
doing
solution
validation
for
this
this
week,
but
it's
not
ready
for
that.
So
I'm
still
working
on
the
designs
and
then
once
camellia
starts
working
on
it
too,
and
we
decided
well
when
she
decides
it's
in
a
good
place.
Then
then
we'll
do
some
proper
solution,
validation
to
make
sure
that
the
whole
flow
makes
sense.
But
I'm
not
sure
if
everyone
had
a
chance
to
look
at
this
so
I'll
run
through
it.
B
Okay,
so
this
is
the
small
update
to
the
existing
merge
request:
approval
widget
that
exists
in
the
merge
request
settings
at
the
project
view
for
people
who
don't
have
any
policies
set
up,
I'm
proposing
a
little
banner
that
says
you
can
do
more
for
for
vulnerability
checks
with
an
import
with
a
policy,
and
then
you
can
create
that
policy
here
or
you
can
just
dismiss
it.
We'll
still
have
vulnerability
check
available
at
that
project
level.
For
a
few
milestones,
at
least
while
we
hopefully
get
customers
more
interested
in
the
policies.
B
If
a
policy
has
been
enabled,
it
will
show
up
here
in
the
list
and
there'll
be
a
little
badge
that
says
security
policy.
If
you
click
view
details,
you
can
see
what
that
policy
entails
and
it's
kind
of
a
read-only
view.
So
you
can't
edit
it
from
here,
but
you
can
go
and
look
at
that
policy
on
the
policy
page
and
then
from
there
you
can
make
edits
and
open
merge
requests.
B
This
is
what
the
policy
page
looks
like
for
the
scan
result
policy
and
you.
This
is
really
just
one
state
of
what
it's
going
to
look
like
or
it
could
look
like
in
this
case.
You
can
read
the
rules
that
will
make
will
trigger
this
rule
and
then
you
can
add
different
users
or
groups
via
this
little
drop
down.
B
We
change
the
wording
from
save
policy
to
create
merge
requests,
because
that's
what
you're
essentially
doing-
and
I
didn't
want
there
to
be
any
confusion
over-
why
this
policy
hasn't
been
enabled
or
anything
like
that-
it's
not
really
being
saved.
So
we're
going
to
do
create,
merge,
request,
there's
a
banner
here,
and
I
think
that
sam
you
had
some
reservations
about
the
banner.
B
B
It's
the
basic
merge
request
flow
and
then
here
this
is
what
I
just
updated.
This
is
like
the
fourth
time
I've
updated
this
page,
so
I
apologize
that
policy
that
you
just
created
will
show
up
here
at
the
top
and
it
will
say
not
enabled
in
this
case
I
put
two.
I
don't
know
why.
B
So
there
are
two
open,
merge
requests
associated
with
that
policy
and
if
you
hover
over
it,
you
get
a
pop
over
that
links
to
the
two
merge
requests
and
the
policy
type
is
below
enabled
or
not
enabled
or
the
two
states
that
I
thought
would
work.
I
might
need
another
one,
and
I
guess
that's
it.
That's
it
for
the
whole
float.
B
Excuse
me:
does
anyone
have
any
questions
about
that.
C
I
believe,
with
the
scan
execution
policies.
Now
they,
when
you
click
the
create
merge,
request
button.
It
just
goes
to
a
the
newly
created
merge
request
and
it
doesn't
go
to
like
a
pre-filled
template
yeah.
It
goes
to
the
screen
instead
of
okay,
the
prior
screen.
What
would
be
the
benefits
of
having
this
intermediate
state.
B
That's
a
good
question.
I
don't
actually
I
don't
know
why
sas
does
it,
so
maybe
there
is
a
reason.
Does
anyone
else
know.
C
B
B
D
C
Right
well,
yeah,
that's
what
annabelle
is
proposing
and
that's
what
sas
is
doing,
but
for
the
current
project
for
scan
execution.
We
don't
take
them
to
this
page.
We
take
them
to
the
next
page
if
they
click
the
create
merge,
request
button.
We
take.
A
D
Okay
right
yeah,
because
it
is
odd
because
we
have
create,
merge
requests
and
then
we
take
them
to
another
page
where
they
have
the
same.
Now
that
you've
changed
the
wording
annabelle
it's
actually
the
same
on
both
pages,
so
they
have
to
click,
create,
merge
twice
and
at
what
point
are
you
actually
creating
it?.
B
A
C
A
B
B
D
D
B
D
So
I
think
there
was
some
confusion
about
this
while
I
was
on
pto,
but
you
should
be
able
to
just
go
straight
into
creating
a
new
policy
and
then,
when
you
click
create
like
at
the
bottom,
when
you
click
that
blue
button,
that's
when
we
should
be
creating
the
project
if
it
doesn't
already
exist,.
B
B
D
Yeah,
that
would
be
the
desired
behavior,
though
clicking
new
policy
should
just
go
straight
to
the
new
policy
page
and
then,
when
you
actually
click
at
the
bottom,
we
should
probably
change
that
to
be
consistent
with
whatever
we
decide
here.
When
you
click
create
merge
request,
then
it
should
automatically
create
the
project
if
it
does
not
already
exist
and
create
the
merge
request
in
that
project.
B
C
A
C
Currently,
how
it
works
for
scan
execution
policies-
and
the
mr
I
have
up
is
you-
click
create
merge
request.
It
does
a
check
for
a
security
policy
project
if
it
doesn't
have
one
it
creates
it
auto,
links
it
and
then
creates
the
merge
request
on
there
and
if
it
already
has
one
then
just
creates
the
merge
request,
but
it
does
go
straight
to
the
merge
request
and
not
the
merge
request.
Template.
A
Would
if
we,
if
we
want
to
give
the
user
the
option
to
create,
to
review
the
mesh
request
before
hitting
create,
would
would
it
make
sense
to
change
that
button
there
to
say
start
merge
request
instead
of
create.
D
A
D
But
if
we
don't
have
that
intermediate
page
and
we
do
it
as
it
is
now
like
I
said,
I
think
the
banner
makes
a
lot
more
sense
because
they
don't
have
that
second
page
to
review
it.
So
having
a
banner
to
explain,
what's
about
to
happen
when
you
click
the
big
blue
button
again,
I
think
we
should
keep
the
banner
if
we're
just
creating
it
right.
There.
B
This
probably
has
already
worked
out,
I'm
assuming
it
is.
I
just
don't
know
the
answer:
if
I'm
a
user
who
does
not
have
access
to
the
security
approval
project
and
there
isn't
sorry,
there
is
no
security,
google
project,
I
don't
see
the
new
policy
button
right
and
I
don't.
I
don't
see
anything
probably.
D
B
D
D
B
D
B
C
D
C
Right
so
I
think
right
now
for
scan
execution.
It
was
easiest.
C
Probably
a
better
solution
is
just
graying
out
graying
out
the
scan
execution
policy
selection
in
the
drop
down
when
you
click
new
policy,
and
then
you
select
what
type
of
policy
you're
creating
have
it
there
but
gray
it
out.
D
D
D
D
D
B
A
Is
there
a
link
that
we
could
offer
for
for
a
better,
more
direct
call
to
action,
because,
if
you
just
say
contact
the
owner
of
the
project,
maybe
the
entrepreneur
that
doesn't
know
what
to
do
to
get
it
away
and
do
what?
If
you
say,
ask
the
owner
of
the
project
to
click
here
to
create
a
management
project.
D
A
C
C
Grayed
out
the
create,
merge,
request
button,
and
I
I
remember
thinking
I
should
ask
someone
about
this
and
then
I
forgot
to
I'm
sorry.
C
There's
no
iteration
emoji
that
I
can
post,
but
here's
a
heart.
I.
A
I
had
a
I
had
a
a
minor
knit
slash
language,
maybe
curiosity,
the
the
on
the
second
I
think
screen
they
showed
on
a
bell.
It
says,
enabled
not
enabled
do
you
prefer
that
to
enable
disabled.
B
Yeah
I
used
not
enabled
because
that's
what
we
use
on
the
security
configuration
page
and
I
think
that's
what
we
started
with
before.
I
started
messing
everything
around.
I
want
to
say,
and
don't
quote
me
on
this
and
it's
being
recorded,
I
feel
like
disabled
isn't
a
word
we
should
be
using
as
much
anymore.
I
don't
know
if
that's
sure
I.
B
A
For
me,
it
was
was,
I
was
curious
because
I
I
couldn't
think
of
somewhere
else
to
look
for
a
patent,
but
it
sounds
like
it's
consistent.
So
I
don't
mind.
I
was
just
curious.
It.
B
D
So
I
I
don't
know
what
we
want
to
do
when
the
policy
doesn't
exist
yet
annabelle
it
looked
like
looked
like
you
were
suggesting,
it
would
just
say,
not
enabled,
but
it
might
be
a
little
bit
confusing.
So
if
you've
got
an
openmr
to
create
a
new
policy
that
does
not
yet
exist,
and
that
mr
would
set
the
policy
to
be
enabled,
it
gets
a
little
bit
confusing
because,
like
is
this
enabled,
is
it
not?
I
don't
know
I
could
just
foresee,
maybe
some
confusion
there.
B
It
doesn't
really
fall
in
the
same
category
as
enabled
or
not
enabled
it's
not
like.
That's
a
state
that
you
can
set
in
that
area,
so
we
removed
it,
and
so
I
don't
did
I
take
pending
out
completely.
B
We
can't
rely
on
color
for
that
kind
of
stuff
because
it's
not
accessible
and
we
do
that
with
like
closed
issues.
If
you
look
at
related,
one
of
the
related
issues
are
merger
quest
blocks.
I
didn't
even
know
it
was
gray
for
a
long
time
and
that's
what
we
were
saying
is
closed.
But
yeah.
That's
a
good
point.
I
do.
B
D
Cool
yeah:
well,
thanks
for
running
through
this
annabelle,
I'm
really
excited
to
see
where
all
this
is
headed.
I
think
you
know
we're
all
making
some
really
great
progress
in
this
area,
so
looking
forward
to
seeing
it
all
come
out.
A
Thank
you
thank
you
for
bringing
engineers
on
it
as
well.
Thank
you.