azure-policy
balanced-employee-ip-agreement
Our great sponsors
azure-policy | balanced-employee-ip-agreement | |
---|---|---|
9 | 7 | |
1,430 | 2,116 | |
2.0% | 0.2% | |
8.1 | 0.0 | |
6 days ago | about 1 year ago | |
Open Policy Agent | ||
MIT License | Creative Commons Zero v1.0 Universal |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
azure-policy
- VMSS Azure Policy Compliance
-
Automation as key to cloud adoption success
Reference: https://github.com/Azure/azure-policy
-
Favorite cloud provider governance tips and tricks?
I just came across this post over in the Azure subreddit and it gave me a good idea on one way to deal with rogue Azure subscriptions - just have them default into a Management Group where a policy is in-place that basically denies use of any and all services.
-
How can we stop random users in our on-prem AD from creating new Azure subscriptions?
Oooo, that's a nice trick for the use of the root management group which usually has best practice to leave empty. I like that a lot! Could maybe pair that with the "deny all resource types" policy sample, and then even if someone does create a new subscription it's pretty much 100% neutered until someone pulls it out of the root management group and places it somewhere else.
-
Architecture on Decommission huge list of old Azure servers
Found a 2018 Github article - https://github.com/Azure/azure-policy/issues/102
-
Public assets
MS Repo https://github.com/Azure/azure-policy/tree/master/built-in-policies/policyDefinitions
-
How can I resolve this Security center recommendation: "Replace a process level token"
I can see here that is expecting azure-policy/AzureWindowsBaseline.mof at master · Azure/azure-policy · GitHub: "LOCAL SERVICE, NETWORK SERVICE". However, that would exclude the web app pools.
-
Iron Dome = 'Security Policies' at scale for your Multi-Cloud accounts
Azure shared with us a GitHub repository contains built-in samples of Azure Policies that can be used as reference for creating and assigning policies to your subscriptions and resource groups.
-
Compliance with policy or blueprints?
The only real way you'll be able to do this is via an Azure Policy, alongside a deny effect - where your policy would restrict based on the type field, with the values passed in via an array parameter (example)
balanced-employee-ip-agreement
- GitHub's employee intellectual property agreement, open sourced and reusable
-
Ask HN: How to validate start up idea whilst employed?
[2] https://github.com/github/balanced-employee-ip-agreement/blo...
-
Company Wants Ownership of *All* Prior Inventions and Ideas
I worked for a company and they wanted to do something similar, I think they went with something boilerplate or from an attorney. I suggested a compromise and we use something similar to the [GitHub Balanced Employee Intellectual Property Agreement (BEIPA)](https://github.com/github/balanced-employee-ip-agreement/blo...).
I'm not sure if in your circumstance they would go for it, but it worked out for me. Here is the github blog post - https://github.blog/2017-03-21-work-life-balance-in-employee...
-
Stop using your work laptop or phone for personal stuff, because I know you are
I think this is reasonable advice, in some settings. But for many of us, I think it’s just not practical anymore.
The lines have become too blurred. I work from home, I have one office and one desk. The computer on the desk was purchased by my company but other stuff wasn’t like my mouse or my iPad. I have work Slack on my phone, which is my personal phone.
Granted, I work for a startup. This isn’t a company IT department managed laptop. It’s a MBP they had shipped directly from Apple to me.
The GitHub Balanced Employee IP Agreement acknowledges that this distinction is arbitrary and unhelpful:
> In California the main difference made by BEIPA is that IP developed with company equipment or relating to the company's business, but in an employee's free time and which the employee is not involved in as an employee, is not owned by the company (but the company does get a non-exclusive and unlimited license if the IP relates to the company's business). This recognizes that from the employee perspective, segregating one's life activities based on ownership of devices at hand or relatedness to an employer's potentially vast range of business that an individual employee is not involved with as an employee imposes significant cognitive overhead and often doesn't happen in practice, whatever agreements state.
- https://github.com/github/balanced-employee-ip-agreement
I hope that more employee agreements move this direction so we can stop trying to enforce this distinction.
-
How do I navigate IP issues with a new employer?
I interviewed with Sysco Labs and they had some IP stuff in the contract that was absolutely bonkers. They accounted for everything, even if I died then I couldn’t pass on my IP to my kids, it would go to them instead. I asked them to remove it and replace it with BEIPA but they didn’t go for it. I asked if they would negotiate at all on any part of the contract. They said no. I walked away from that job even though I really wanted it. They showed me who they were as a company and I didn’t like what I saw.
- GitHub's employee intellectual property agreement
What are some alternatives?
OPA (Open Policy Agent) - Open Policy Agent (OPA) is an open source, general-purpose policy engine.
tosdr.org - ARCHIVED Source code for tosdr.org
shellharden - The corrective bash syntax highlighter
site-policy - Collaborative development on GitHub's site policies, procedures, and guidelines
opal - Fork of https://github.com/permitio/opal
covid-policy-tracker - Systematic dataset of Covid-19 policy, from Oxford University
Community-Policy - This repo is for Microsoft Azure customers and Microsoft teams to collaborate in making custom policies.
PatZilla - PatZilla is a modular patent information research platform and data integration toolkit with a modern user interface and access to multiple data sources.
Certified-Kubernetes-Security-Specialist - Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
awesome-azure-policy - A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @JesseLoudon
AKS - Azure Kubernetes Service
the-law - A collection of information on laws that govern us. Covering multiple countries and different domains. Including tax information.