Add security reports (#1135)

Signed-off-by: AdamKorcz <[email protected]>
cncf · Aug 1, 2023 · 552fbaa · 552fbaa
1 parent 72f86da
commit 552fbaa
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/docs/projects.md b/docs/projects.md
@@ -265,11 +265,14 @@
 [Vitess (fuzzing)](https://github.com/vitessio/vitess) | [05/19/2021](https://github.com/vitessio/vitess/blob/master/doc/VIT-02-report-fuzzing-audit.pdf) | [Announcement](https://github.com/vitessio/vitess/blob/master/doc/VIT-02-report-fuzzing-audit.pdf) | CNCF | [AdaLogics](https://adalogics.com)
 [SPIRE/SPIFFE](https://github.com/spiffe/spire) | [08/17/2021](https://github.com/spiffe/spire/blob/main/doc/cure53-report.pdf) | [Announcement](https://www.cncf.io/blog/2021/08/17/open-sourcing-the-spiffe-spire-security-audit/) | CNCF | [Cure53](https://cure53.de)
 [Flux](https://github.com/fluxcd/flux2) | [11/10/2021](https://fluxcd.io/FluxFinalReport-v1.1.pdf) | [Announcement](http://fluxcd.io/blog/2021-11-10-flux-security-audit/) | CNCF | [ADA Logics](https://adalogics.com)
-[Argo](https://github.com/argoproj/argoproj) | [2/28/2022](https://github.com/argoproj/argoproj/blob/dd7cae43d81c5a11f21ff4ea0a4afadcae4799c7/docs/audit_fuzzer_adalogics_2022.pdf) | [Announcement](https://blog.argoproj.io/argo-security-automation-with-oss-fuzz-da38c1f86452) | CNCF | [ADA Logics](https://adalogics.com)
+[Argo (fuzzing)](https://github.com/argoproj/argoproj) | [2/28/2022](https://github.com/argoproj/argoproj/blob/dd7cae43d81c5a11f21ff4ea0a4afadcae4799c7/docs/audit_fuzzer_adalogics_2022.pdf) | [Announcement](https://blog.argoproj.io/argo-security-automation-with-oss-fuzz-da38c1f86452) | CNCF | [ADA Logics](https://adalogics.com)
 [etcd](https://github.com/etcd-io/etcd) | [3/11/2022](https://github.com/etcd-io/etcd/blob/main/security/FUZZING_AUDIT_2022.PDF) | [Announcement](https://etcd.io/blog/2022/etcd-integrates-continuous-fuzzing/) | CNCF | [ADA Logics](https://adalogics.com)
 [crio](https://github.com/cri-o/cri-o/) | [6/6/2022](https://github.com/cri-o/cri-o/pull/5938) | [Announcement](https://www.cncf.io/blog/2022/06/06/ada-logics-cri-o-holistic-security-audit-engagement/) | CNCF | [ADA Logics](https://adalogics.com)
 [linkerd](https://github.com/linkerd/linkerd2) | [6/28/2022](https://github.com/linkerd/linkerd2/tree/main/audits/2022) | [Announcement](https://www.cncf.io/blog/2022/06/28/announcing-the-completion-of-linkerds-2022-security-audit/) | CNCF | [Trail of Bits](https://trailofbits.com)
+[Kubernetes (fuzzing)](https://github.com/kubernetes/kubernetes) | [7/5/2022](https://github.com/kubernetes/sig-security/blob/main/sig-security-external-audit/adalogics-fuzzing-2022/kubernetes-fuzzing-report.pdf) | [Announcement](https://github.com/kubernetes/sig-security/pull/50) | CNCF | [Ada Logics](https://adalogics.com)
 [KubeEdge](https://github.com/kubeedge/kubeedge) | [7/11/2022](https://github.com/kubeedge/community/blob/master/sig-security/sig-security-audit/KubeEdge-security-audit-2022.pdf) | [Announcement](https://www.cncf.io/blog/2022/07/11/ostifs-audit-of-kubeedge-is-complete-multiple-security-issues-found-and-fixed/) | CNCF | [Ada Logics](https://adalogics.com)
+[Argo](https://github.com/argoproj) | [7/18/2022](https://github.com/argoproj/argoproj/blob/master/docs/argo_security_audit_2022.pdf) | [Announcement](https://blog.argoproj.io/2022-argo-external-security-audit-lessons-learned-951f80e0450d) | CNCF | [Ada Logics](https://adalogics.com)
+[Cluster API (fuzzing)](https://github.com/kubernetes-sigs/cluster-api) | [7/20/2022](https://github.com/kubernetes/sig-security/blob/main/sig-security-assessments/cluster-api/capi_2022_fuzzing.pdf) | [Announcement](https://www.cncf.io/blog/2022/07/20/kubernetes-cluster-api-integrates-continuous-fuzzing/) | CNCF | [Ada Logics](https://adalogics.com)
 [Backstage](https://github.com/cloudevents/spec) | [8/23/2022](https://backstage.io/blog/assets/22-08-23/X41-Backstage-Audit-2022.pdf) | [Announcement](https://backstage.io/blog/2022/08/23/backstage-security-audit) | CNCF | [X41 D-Sec](https://x41-dsec.de/)
 [CloudEvents](https://github.com/cloudevents/spec) | [11/28/2022](https://ostif.org/wp-content/uploads/2022/11/CloudEvents.pdf) | [Announcement](https://ostif.org/results-of-the-cloudevents-security-assessment/) | CNCF | [Trail of Bits](https://trailofbits.com)
 [Istio](https://github.com/istio) | [1/30/2023](https://istio.io/latest/blog/2023/ada-logics-security-assessment/Istio%20audit%20report%20-%20ADA%20Logics%20-%202023-01-30%20-%20v1.0.pdf) | [Announcement](https://www.cncf.io/blog/2023/01/30/istio-publishes-results-of-2022-security-audit) | CNCF | [ADA Logics](https://adalogics.com)
@@ -279,6 +282,8 @@
 [containerd (fuzzing)](https://github.com/containerd/containerd) | [3/2/2023](https://github.com/containerd/containerd.io/blob/main/static/img/ADA-fuzzing-audit-21-22.pdf)| [Announcement](https://www.cncf.io/blog/2023/03/02/containerd-completes-fuzzing-audit/) | CNCF | [Ada Logics](https://adalogics.com)
 [The Notary Project (fuzzing)](https://github.com/notaryproject) | [3/21/2023](https://github.com/notaryproject/notaryproject/blob/main/security/reports/fuzzing/ADA-fuzzing-audit-22-23.pdf)| [Announcement](https://www.cncf.io/blog/2023/03/21/the-notary-project-completes-fuzzing-security-audit/) | CNCF | [Ada Logics](https://adalogics.com)
 [Falco](https://github.com/falcosecurity/falco) | [3/22/2023](https://falco.org/blog/falco-security-audit-2023/) | [Announcement](https://falco.org/blog/falco-security-audit-2023/) | CNCF | [OSTIF](https://ostif.org/)
+[Crossplane (fuzzing)](https://github.com/crossplane) | [3/24/2023](https://github.com/crossplane/crossplane/blob/master/security/ADA-fuzzing-audit-22.pdf)| [Announcement](https://blog.crossplane.io/fuzzing-security-audit/) | CNCF | [Ada Logics](https://adalogics.com)
+[Helm (fuzzing)](https://github.com/helm/helm) | [3/31/2023](https://github.com/helm/community/blob/main/security-audit/FUZZING_AUDIT_2022.pdf) | [Announcement](https://helm.sh/blog/helm-completes-fuzzing-security-audit/) | CNCF | [Ada Logics](https://adalogics.com)
 [Vitess](https://github.com/vitessio/vitess) | [6/5/2023](https://github.com/vitessio/vitess/blob/main/doc/VIT-03-report-security-audit.pdf)| [Announcement](https://vitess.io/blog/2023-06-05-vitess-security-audit/) | CNCF | [Ada Logics](https://adalogics.com)
 [Dapr (fuzzing)](https://github.com/dapr) | [6/30/2023](https://docs.dapr.io/docs/Dapr-june-2023-fuzzing-audit-report.pdf)| [Announcement](https://blog.dapr.io/posts/2023/06/30/dapr-completes-fuzzing-audit/) | CNCF | [Ada Logics](https://adalogics.com)
 [Notation](https://github.com/notaryproject) | [7/11/2023](https://github.com/notaryproject/notaryproject/blob/main/security/reports/audit/ADA-notation-security-audit-23.pdf)| [Announcement](https://notaryproject.dev/blog/2023/notation-completes-security-audit/) | CNCF | [Ada Logics](https://adalogics.com)