-
-
Notifications
You must be signed in to change notification settings - Fork 35
Back to Milestones
02. Security
OpenMay 22, 2026
No due date
•Last updated Objective: To keep data and resources secure.
Achieved by: Passwords, tokens, etc.
Feature labels: TBC.
31% complete
List view
0 of 13 selected 0 issues of 13 selected
Create automation to generate new security check issues from template on schedule
complexity: largeVery free-form with vague requirements that need to be worked outVery free-form with vague requirements that need to be worked outfeature: infrastructureFor changes on site technical architectureFor changes on site technical architecturePII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 5ptCan be done in 19-30 hoursCan be done in 19-30 hoursStatus: Open.#334 In hackforla/peopledepot;Enable SSO for admin screen
complexity: largeVery free-form with vague requirements that need to be worked outVery free-form with vague requirements that need to be worked outPII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 3ptCan be done in 13-18 hoursCan be done in 13-18 hoursStatus: Open.#323 In hackforla/peopledepot;Draft: Write documentation for knowledgebase, peopledepot, Cognito user sign up flow
complexity: largeVery free-form with vague requirements that need to be worked outVery free-form with vague requirements that need to be worked outdraftThis issue is not fully-writtenThis issue is not fully-writtenp-feature: Stakeholder documentationdocumentation for Users of People Depotdocumentation for Users of People DepotPII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: kbstakeholder: knowledgebasestakeholder: knowledgebases: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 5ptCan be done in 19-30 hoursCan be done in 19-30 hoursStatus: Open.#458 In hackforla/peopledepot;Implement field configurable security for global admin, project admin, and team member
complexity: largeVery free-form with vague requirements that need to be worked outVery free-form with vague requirements that need to be worked outPII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 13+ptMust be broken down into smaller issuesMust be broken down into smaller issuesStatus: Open.#346 In hackforla/peopledepot;create an issue template for checking dependency updates
complexity: smallSmall changes with all steps laid out in detailSmall changes with all steps laid out in detailPII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 2ptCan be done in 7-12 hoursCan be done in 7-12 hoursStatus: Open.create a GHA to generate security-related GitHub issues every quarter
complexity: smallSmall changes with all steps laid out in detailSmall changes with all steps laid out in detailfeature: infrastructureFor changes on site technical architectureFor changes on site technical architecturePII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 0.5ptCan be done in 2-3 hoursCan be done in 2-3 hoursStatus: Open.Update python dependencies
complexity: smallSmall changes with all steps laid out in detailSmall changes with all steps laid out in detailPII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 0.5ptCan be done in 2-3 hoursCan be done in 2-3 hoursStatus: Open.Restrict post and patch fields in user request
complexity: largeVery free-form with vague requirements that need to be worked outVery free-form with vague requirements that need to be worked outPII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: orgstakeholder: the org (includes stats)stakeholder: the org (includes stats)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 8ptCan be done in 31-48 hoursCan be done in 31-48 hoursStatus: Open.#570 In hackforla/peopledepot;Restrict users retrieved in a get to team members
complexity: largeVery free-form with vague requirements that need to be worked outVery free-form with vague requirements that need to be worked outPII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: orgstakeholder: the org (includes stats)stakeholder: the org (includes stats)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 8ptCan be done in 31-48 hoursCan be done in 31-48 hoursStatus: Open.#571 In hackforla/peopledepot;Restrict get specific user to users on same team
complexity: largeVery free-form with vague requirements that need to be worked outVery free-form with vague requirements that need to be worked outPII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: orgstakeholder: the org (includes stats)stakeholder: the org (includes stats)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 8ptCan be done in 31-48 hoursCan be done in 31-48 hoursStatus: Open.#572 In hackforla/peopledepot;Restrict user response to fields based on field_permission.csv
complexity: largeVery free-form with vague requirements that need to be worked outVery free-form with vague requirements that need to be worked outPII: FALSETable or function does not have or use Personally Identifiable Information (PII)Table or function does not have or use Personally Identifiable Information (PII)s: orgstakeholder: the org (includes stats)stakeholder: the org (includes stats)s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 8ptCan be done in 31-48 hoursCan be done in 31-48 hoursStatus: Open.#573 In hackforla/peopledepot;Make sure all 3rd party GHA are associated with commit IDs
complexity: smallSmall changes with all steps laid out in detailSmall changes with all steps laid out in detailfeature: infrastructureFor changes on site technical architectureFor changes on site technical architectures: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 1ptCan be done in 4-6 hoursCan be done in 4-6 hoursStatus: Open.#676 In hackforla/peopledepot;MkDocs plugin updates
complexity: mediumStraightforward but some complexity (e.g., involves multiple files)Straightforward but some complexity (e.g., involves multiple files)feature: docs: PD team documentationdocumentation on PD team processes and architecture, etc.documentation on PD team processes and architecture, etc.s: PD teamstakeholder: People Depot Teamstakeholder: People Depot Teamsize: 1ptCan be done in 4-6 hoursCan be done in 4-6 hoursStatus: Open.