The Configuration Persistence Service (CPS) project within the ONAP ecosystem has become the first Linux Foundation Networking project to achieve the OpenSSF Best Practices Gold Badge. The achievement came after a three-year effort built on three pillars: code excellence (97-100% test coverage, zero quality violations, strict peer review), testing rigor (unit tests with Spock/Groovy, Testcontainers-based semi-integration tests, performance testing in CI), and a security-first mindset (SonarCloud scanning, encryption in transit, 2FA enforcement). Challenges included navigating ONAP-wide infrastructure policies like enabling 2FA across the broader community. The team is now exploring AI-assisted vulnerability detection and plans to also pursue the OpenSSF Baseline criteria.
Table of contents
What is the Gold Badge?The Three Pillars of Our JourneyNavigating the RoadblocksWhy This MattersBeyond the Gold: The AI FrontierSort: