Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Project Roadmap #2108

Open
captn3m0 opened this issue Dec 20, 2022 · 12 comments
Open

Project Roadmap #2108

captn3m0 opened this issue Dec 20, 2022 · 12 comments
Labels
community

Comments

@captn3m0
Copy link
Member

This issue documents the long-term thought process behind the endoflife.date project. All of the items in the roadmap are good places to contribute, but might need some experimentation and discussion. If you are interested in working on one of these, please create a new issue, or comment on the existing one which should be linked below.

Theme: Community

  1. Get more contributors, make it easier for users to make contributions, especially for new projects
  2. Document the project better, especially around the release-data project, to allow new contributors to easily write new scrapers.
  3. Have a community townhall once a month to discuss issues, product requests, EOL ecosystem, our analytics, website updates, and maybe finances/governance.
  4. Document processes for maintainers.
  5. Have a style-guide to enforce a clear and consistent tone across the website.
  6. Centralize contribution documentation #2054

Theme: Automation

Our automation is mainly to ensure the latest versions mentioned on the website are accurate at all times.

  1. Add more projects under our Automation list. You can help by writing scripts that fetch release dates and version numbers from various upstream sources. See [PAN-OS] Subversions removed by automation release-data#26 for example.
  2. Improve our existing releases.json file schema in the release-data repository to add more information. Update releases JSON format release-data#51
  3. Standardize the automation configuration format so it works the same across all types. See Support Multiple regexes for git type release-data#41 for example. Right now, adding multiple types might result in unexpected behaviour for example.
  4. Fix newlines for new release cycle report #1868
  5. Automate checking for broken links. Broken Links #1206
  6. Start validating frontmatter on all PRs, including PRs raised from forks. Validate Frontmatter / validate check is not mandatory for merging PRs #1979
  7. Migrate products to NPM automation when it makes sense #2071

Theme: Integration

Integration is about empowering other projects that are using our API or dataset.

  1. Document Known Users of the API
  2. Get our API from Alpha to Stable:

Theme: Ecosystem

This is about big-picture plans, that can hopefully push the supply chain security ecosystem forward.

  1. Creating a SBOM Scanner that runs using Netlify Edge.
  2. Embedding PURL and CPE data into our API, so as to increase scanning accuracy. See [purl] Initial work on linking to PURLs #1545, Add mongodb-server purl #1778 for example. Documentation is pending: Document purls key in the contribution guide #1917
  3. Integrate with the SBOM Ecosystem: Integrate with the SBOM Ecosystem #763. Perhaps start by publishing a Grype-compatible feed that can be used to scan SBOMs.
  4. Publish data in Promtheus format to allow usage directly in observability ecosystem (such as by setting up alerts for EOL dates). Prometheus exporter #975
  5. Publish a specification for a releases.json format, which can be used by vendors to publish information about supported products, and releases. We have a v0 Draft up for this for feedback: RFC: Initial Draft releases.json#1
  6. EMail Notifications: Get email notifications for specific tech at set intervals #238
  7. Add RSS feeds for new releases and EOLs: Per-Tool RSS Feed Planning #48

Theme: Usability

Improve usability of the website itself, making it friendlier and easier to use.

  1. Images for social sharing: Please implement the Open Graph protocol for products homepage #2007. Site Logo and Cards #28
  2. Improve accessibility  #1963
  3. Add links to changelogs for all pages. Link to changelogs and/or upgrade guides #39
  4. [Feature Request] Dark Mode #1187
  5. Allow changing order of columns  #404
  6. Autofocus to search-input #367
  7. Visual timeline #166
  8. Add calendar feeds: Add support for ICS Files #59
@captn3m0 captn3m0 pinned this issue Dec 20, 2022
@captn3m0 captn3m0 mentioned this issue Dec 20, 2022
Closed
@marcwrobel
Copy link
Member

We have a hell of a lot of work to do! 😉

@adriens
Copy link
Contributor

adriens commented Dec 31, 2022

2023 will be a great year ✨ 💪

@adriens
Copy link
Contributor

adriens commented Dec 31, 2022

❔ Why not organizing the roadmap as a GH Issue project ?

@noqcks
Copy link
Contributor

noqcks commented Jan 2, 2023
edited
Loading

Is there any automation around automatically setting eol dates for products?

I was looking for something under _auto but couldn't find anything. I see that we have automation around automatically grabbing latest software versions, but I think programatically determining an EOL date could be possible too for a subset of projects.

Some of the more simple versioning policies like

  • EOL support until 2 major versions are released
  • EOL support x months from release

Any interest in this?

@adriens
Copy link
Contributor

adriens commented Jan 2, 2023

I know that projects are CI driven but have not yet used it

@captn3m0
Copy link
Member Author

captn3m0 commented Jan 3, 2023

@noqcks It is planned, currently blocked on finalizing our schema for the release-data project: endoflife-date/release-data#51

This currently includes versions and release dates, but we want to add EOL dates, identifiers, and probably more. For the first pass, we'll probably just focus on scraping EOL information.

@captn3m0

This comment was marked as off-topic.

Sign in to view
@flo7000
Copy link
Contributor

flo7000 commented Jun 25, 2024
edited
Loading

Hello all,
First, I want to thank you for the your work on this amazing project! We're planning to implement it in KQL-Queries in Defender to see who hasn't updated EOL software.
Now I have a question regarding the CPE data: what's the status here? If you need resources here, I could do some things, because I want to learn more during my apprenticeship 😎

@captn3m0

@captn3m0
Copy link
Member Author

captn3m0 commented Jun 25, 2024
edited
Loading

We're planning to implement it in KQL-Queries in Defender to see who hasn't updated EOL software.

Would be great if you could publish a blog post or tutorial around this.

CPE data: what's the status here?

PRs are welcome to improve our data. I was hoping to piggy-back on Repology to link to CPEs (same as our plan for PURLs) - see #5352. While this would take some time, PRs are welcome for adding CPE identifiers, especially to things that aren't tracked on Repology. This would include devices, operating systems etc.

@captn3m0
Copy link
Member Author

@flo7000 I've filed #5354 so we have an updated list of pages without identifiers available at https://deploy-preview-5354--endoflife-date.netlify.app/help/identifiers-needed/ (endoflife.date/help/identifiers-needed/ once this is merged).

@flo7000

This comment was marked as off-topic.

Sign in to view
@captn3m0

This comment was marked as off-topic.

Sign in to view
@flo7000 flo7000 mentioned this issue Sep 9, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
community
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@captn3m0 @marcwrobel @noqcks @adriens @BiNZGi @flo7000