Add Risk Engine Config

[telusdigitaldelivery]

Add risk engine config to repositories deployed on OpenShift that contain an openshift-template.yaml file and that do not already have a riskEngineConfig.yaml file in the .platform folder. This is excluding archived repositories. For further information please refer to https://github.com/telus/technology-forum/issues/426

Created by Sourcegraph batch change xplo8/addRiskEngineConfigPR-v2.

[telusdigitaldelivery]

Risk Assessment results for 'Add Risk Engine Config'

Source: GitHub Event - Pull Request - Opened

Assessment Details

• Assessment ID: 332924
• Project: tds-community
• Owner: telus
• PR Number: 608
• Commit ID: 0d226ba
• Created At: 2022-08-18T06:13:43.613Z

---

Summary

⚠️ The current risk calculation strategy is set to be replaced on September 12th, 2022 ⚠️

	Total Risk	Threshold	Summary
⚠	69%	30%	Total risk is above the repository risk threshold and the repository is not yet approved for automated release. Address risk inputs below to lower the total risk before submitting an Embargo Exception Request to Release Management to facilitate deployment. Click here to start an Embargo Exception Request

---

Revised Calculation

⚠️ After September 12th, 2022, this calculation will be adopted Telus-wide. If there is a major discrepancy between this total and the old calculation, please address it before the rollout ends. ⚠️

	Total Risk	Threshold	Summary
⚠	100%	30%	Total risk is above the repository risk threshold and the repository is not yet approved for automated release. Address risk inputs below to lower the total risk before submitting an Embargo Exception Request to Release Management to facilitate deployment. Click here to start an Embargo Exception Request

---

Risk Inputs

View calculation and risk details on Simplify Hub

Category: Application Status

Total Application Status Risk: 89

	Input	Risk	Weight	Details
🔴	Vulnerability Alerts	100%	5	Found 94 vulnerabilities on branch master - Risk from security vulnerabilities is 100% - See Alerts
🔴	Colophon Status	100%	5	Colophon file is invalid - validation failed (schema v4.0) - 18 errors - more...
🔴	Secret Scanning Alerts	100%	1	Unable to check for Secret Scanning alerts - Secret scanning is disabled on this repository. - more...
🔴	Innersource Health	100%	1	Repository telus/tds-community has a public visibility - This should be set to internal to support the Innersource model - more...
🔴	Git Branch Protection	60%	3	Branch master is missing the following protections: Requires Status Checks, Requires Code Owner Reviews, Requires Commit Signatures - more...
🔴	Deploy Target	50%	1	Unable to read project details from colophon file - more...

See all Risk Inputs

	Input	Risk	Weight	Details
🟢	Error Budget	0%	0	Availability score based on undefined team: undefined: ~100% uptime this month as of Wed, Aug 17, 6 PM EDT. The org-wide uptime is ~100%. - more...

---

Category: Change Specific

Total Change Specific Risk: 46

	Input	Risk	Weight	Details
🔴	Semantic Commit	100%	2	Analyzed risk of Semantic Commit messages - invalid: 1
🔴	Changed Files	50%	3	Checked risk of changed files - Risk from files changed is 50% - Risk from missing required changes is 0%
🔴	PR Description	33%	3	PR Description has errors - "Description" has fewer lines than the minimum of 3
🟢	Lines Changed	6%	2	+42 additions -0 deletions

---

Category: Additive

Total Additive Risk: 42

	Input	Risk	Details
🔴	Risk Config File Health	40%	File validation failed - Configuration Errors: 2
🟢	Embargo	2%	Embargo is impending: Back to School 2022 - CCL0. Risk is currently ramping up for 4 days, 21 hours, 47 minutes - Embargo Starts on: Tue, Aug 23, 12 AM EDT - more...

[github-actions]

Packages pending updates:

- @tds/community-date-picker: 1.1.0 => 1.1.1

If this is not what you expected, ensure that your commit messages follow the TDS commit types guide on this page: https://tds.telus.com/contributing/developer-guide.html and try again.