Join Our Team

Join the SIG

Get involved by helping the Continuous Delivery Foundation define the tools and processes needed to secure software across the lifecycle. Join the SIG and bring your knowledge to build cybersecurity into CI/CD workflows.

• Join the GitHub Repository - Add your name to the Read.me.
• Add yourself to the Mailing List - Signup to be notified of meetings and events.
• Join the CDF Slack Channel - Join the CDF Slack Channel and the sig-cicd-cybersecurity thread for daily information.

Code of conduct

We expect contributors to read and observe the CD Foundation Code of Conduct.

All submissions, including submissions by project members, require review. We use GitHub pull requests for this purpose. Consult GitHub Help for more information on using pull requests.

Kate is an experienced Security Architect with a demonstrated history of working in the information technology and services industry. Skilled in NERC CIPC Requirements, Management, Leadership, Security, and Project Management, Kate is the perfect candidate to lead a group of DevOps engineers through the process of meeting compliance and security standards. She has a strong engineering background with a Masters of Science focused in Computer and Information Systems Security/Information Assurance from Nova Southeastern University. Kate has served as a Chief Cybersecurity Architect working for companies such as IBM, Micro Focus and McAfee. Learn more about Kate and reach out to her on LinkedIn.

Get Started

Below are directions for updating the CI/CD Cybersecurity Guide locally, and how to create your pull request.

The Hugo Server and Docsy

This site uses Hugo to format and generate the website, the Docsy theme for styling and site structure, and Netlify to manage the deployment of the site.

Hugo is an open-source static site generator that provides us with templates, content organization in a standard directory structure, and a website generation engine. You write the pages in Markdown (or HTML if you want), and Hugo wraps them up into a website.

Running the site locally

You can use the included Dockerfile to run the site locally.

1. On Mac and Windows, download and install Docker Desktop. On Linux, install Docker engine and Docker compose.

   The installation might require you to reboot your computer for the changes to take effect.

2. Build the docker image:

   docker compose build
   

3. Run the built image:

   docker compose up
   

4. Open the address http://localhost:1313 in your web browser to load the docsy-example homepage. You can now make changes to the source files, those changes will be live-reloaded in your browser.

To clean up your system and delete the container image:

1. Stop Docker Compose with Ctrl + C.

2. Remove the produced images

   docker compose rm
   

Quick start with Netlify

Here’s a quick guide to updating the docs. It assumes you’re familiar with the GitHub workflow and you’re happy to use the automated preview of your doc updates:

1. Fork the CI/CD Cybersecurity on GitHub.
2. Make your changes and send a pull request (PR).
3. If you’re not yet ready for a review, add “WIP” to the PR name to indicate it’s a work in progress. (Don’t add the Hugo property “draft = true” to the page front matter, because that prevents the auto-deployment of the content preview described in the next point.)
4. Wait for the automated PR workflow to do some checks. When it’s ready, you should see a comment like this: deploy/netlify — Deploy preview ready!
5. Click Details to the right of “Deploy preview ready” to see a preview of your updates.
6. Continue updating your doc and pushing your changes until you’re happy with the content.
7. When you’re ready for a review, add a comment to the PR, and remove any “WIP” markers.

Updating a single page

If you’ve just spotted something you’d like to change while using the docs, Docsy has a shortcut for you:

1. Click Edit this page in the top right hand corner of the page.
2. If you don’t already have an up to date fork of the project repo, you are prompted to get one - click Fork this repository and propose changes or Update your Fork to get an up to date version of the project to edit. The appropriate page in your fork is displayed in edit mode.
3. Follow the rest of the Quick start with Netlify process above to make, preview, and propose your changes.