Proposal: Add KubeArmor SLSA L3 and OpenSSF Scorecard Hardening (LFX Term 2)

[HighnessAtharva]

Adds a new mentorship project idea for KubeArmor covering SLSA Level 3 compliance and OpenSSF Scorecard hardening. The two tasks are combined into a single mentorship scope as they share overlapping mechanics around signed releases, build provenance, and artifact integrity.

Pre-task: Signed-Releases check via OpenSSF Scorecard.

CC: @rootxrishabh @daemon1024 @nyrahul @rksharma95

Reviewers: @nate-double-u

[nate-double-u]

Thanks for this @HighnessAtharva!

@rootxrishabh @daemon1024 @nyrahul @rksharma95, could you each approve or 👍 this PR to confirm your (and the project's) participation?

[nate-double-u]

LFX URL:

• https://mentorship.lfx.linuxfoundation.org/project/7fbac80e-bc33-4362-81fa-47950ef45bb2

Followup, we only need 1 upstream issue in order to load this into the LFX platform. I'll add the first one listed, but if you'd like to update this with an umbrella issue I can make an update.

[HighnessAtharva]

LFX URL:

• https://mentorship.lfx.linuxfoundation.org/project/7fbac80e-bc33-4362-81fa-47950ef45bb2

Followup, we only need 1 upstream issue in order to load this into the LFX platform. I'll add the first one listed, but if you'd like to update this with an umbrella issue I can make an update.

Yes please, that would be great. Also we'd like to add @AryanBakliwal to the list of mentors.

[nate-double-u]

Also we'd like to add @AryanBakliwal to the list of mentors.

Please open a followup PR to make that update in the README.

[nate-double-u]

You already have 4 mentors, 5 is a lot, can I ask why the program needs so many? (I do appreciate the enthusiasm, but I'd like to make sure that we're not overwhelming the mentee, and that each mentor has a role to play)