Stacklok Insight is a free-to-use web app that provides data and scoring on the supply chain risk for open source packages.
Welcome to the September edition of This Month in Minder, highlighting our latest project updates and community contributions!
Register all repos in a GitHub organization: You can now optionally register an entire GitHub organization. Minder will manage all the repositories within the organization and any new repositories as they are created. This lets you simplify policy management at scale and eliminate enforcement gaps.
User management: Organization administrators can now invite additional users to an organization and set their permissions.
Profile selectors: Within a profile, users can now designate which repositories, pull requests, and artifacts the profile applies to. You can read more in the Flexible policy enforcement with Minder profile selectors blog post.
Rule evaluation history: Minder now keeps a log of rule evaluations so that users can understand how their managed resources and security posture have changed over time.
Bug fixes: We’ve made numerous bug fixes and performance improvements to our frontend, backend, and authentication systems.
A big welcome and thank you to NEW contributors who joined us since our last update:
During July @mesembria made their first contribution in #3880, which updated the Minder docs to guide users with a clearer, more streamlined, single path to installation. 📃
In August @psekar had their first contribution merged in #4107, adding validation of the GitHub owner token used when registering the provider, to avoid repo registration errors later in the process.
In September we welcomed @gajananan for their first contributions merged in #4335! By centralizing the logic for deriving a profile name, API clients no longer need to implement their own transformations to derive the profile name from the display name when creating a new profile, reducing duplicated code and inconsistencies.
📣 Exciting News: Vyom Yadav joins Minder as first external Maintainer! 🎖️
We are thrilled to announce that Vyom Yadav has accepted the role of our first external Maintainer for Minder. This is a significant milestone for our project and we are grateful for his dedication and hard work since joining in 2023.
Vyom has made significant contributions to Minder, as evidenced by his impressive commits on GitHub. His expertise and dedication have been instrumental in the development and improvement of our platform.
We encourage you to learn more about Vyom on his GitHub profile or LinkedIn profile, where you can find more information about his experience and work.
A heartfelt thank you to Vyom for his dedication and commitment to Minder! We look forward to his continued leadership and contributions as our first external Maintainer. 💖✨
If you want to get involved in contributing to Minder, check out our contributor guide.
We’re working on the following enhancements in the short term:
Improved alerts: improving the guidance provided by alerts in the Minder rules and profiles repository.
Continuous improvement of Minder platform reliability.
You can view Minder’s public roadmap here. If there are any features you want to see in Minder, you can open an issue or join our Discord server and let us know!