From 29cba3a103521b50a150d2c442642086dd254fa4 Mon Sep 17 00:00:00 2001
From: Jordan Dubrick <jdubrick@redhat.com>
Date: Fri, 1 Mar 2024 16:01:12 -0500
Subject: [PATCH 1/2] add security insights

Signed-off-by: Jordan Dubrick <jdubrick@redhat.com>
---
 SECURITY-INSIGHTS.yml | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)
 create mode 100644 SECURITY-INSIGHTS.yml

diff --git a/SECURITY-INSIGHTS.yml b/SECURITY-INSIGHTS.yml
new file mode 100644
index 000000000..526caed91
--- /dev/null
+++ b/SECURITY-INSIGHTS.yml
@@ -0,0 +1,32 @@
+header:
+  schema-version: 1.0.0
+  last-updated: '2024-03-01'
+  last-reviewed: '2024-03-01'
+  expiration-date: '2025-03-01T10:00:00.000Z'
+  project-url: https://github.com/devfile/devworkspace-operator
+  project-release: '0.26.0'
+  commit-hash: '067847d900c18a3fe0d47de920a9ce77af29e722'
+  license: 'https://github.com/devfile/devworkspace-operator/blob/main/LICENSE'
+project-lifecycle:
+  status: active
+  bug-fixes-only: false
+  core-maintainers:
+  - github:AObuchow
+  - github:dkwon17
+  release-cycle: https://github.com/devfile/devworkspace-operator/blob/main/docs/release/README.md
+security-testing:
+- tool-type: sca
+  tool-name: Dependabot
+  comment: |
+    Dependabot is enabled for this repo.
+contribution-policy:
+  accepts-pull-requests: true
+  accepts-automated-pull-requests: true
+  contributing-policy: https://github.com/devfile/devworkspace-operator/blob/main/CONTRIBUTING.md
+  code-of-conduct: https://github.com/devfile/api/blob/main/CODE_OF_CONDUCT.md
+documentation:
+- https://github.com/devfile/devworkspace-operator/blob/main/README.md
+dependencies:
+  third-party-packages: true
+  dependencies-lists:
+  - https://github.com/devfile/devworkspace-operator/blob/main/go.mod
\ No newline at end of file

From 2050372aacfbd82f9002406c1dda96624a8df3f8 Mon Sep 17 00:00:00 2001
From: Jordan Dubrick <jdubrick@redhat.com>
Date: Fri, 1 Mar 2024 16:31:19 -0500
Subject: [PATCH 2/2] add new doc and newline

Signed-off-by: Jordan Dubrick <jdubrick@redhat.com>
---
 SECURITY-INSIGHTS.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/SECURITY-INSIGHTS.yml b/SECURITY-INSIGHTS.yml
index 526caed91..eda1969b8 100644
--- a/SECURITY-INSIGHTS.yml
+++ b/SECURITY-INSIGHTS.yml
@@ -26,7 +26,8 @@ contribution-policy:
   code-of-conduct: https://github.com/devfile/api/blob/main/CODE_OF_CONDUCT.md
 documentation:
 - https://github.com/devfile/devworkspace-operator/blob/main/README.md
+- https://github.com/devfile/devworkspace-operator/blob/main/docs/additional-configuration.adoc
 dependencies:
   third-party-packages: true
   dependencies-lists:
-  - https://github.com/devfile/devworkspace-operator/blob/main/go.mod
\ No newline at end of file
+  - https://github.com/devfile/devworkspace-operator/blob/main/go.mod