Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Create security_baseline_sandbox_stage.md
Signed-off-by: Dana Wang <[email protected]>
- Loading branch information
1 parent
42d1590
commit a551b41
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,35 @@ | ||
| ## Creation of a new Special Interest Group (SIG) at Sandbox stage | ||
|
|
||
| ### Proposed focus, intent, goals, and/or deliverables | ||
|
|
||
| The goal of this SIG is to evolve [OpenSSF security baseline](https://github.com/ossf/tac/blob/a90b9838739ac18df43197fdd89f045c1a1e4dc3/process/security_baseline.md) for Linux Foundation wide adoption. | ||
|
|
||
| ### List SIG Lead(s) | ||
| The SIG must have a minimum of 1 Lead | ||
| * Eddie Knight, OpenSSF Security Insights lead, Sonatype, GitHub ID: eddie-knight | ||
| * Michael Lieberman, OpenSSF GUAC lead, Kusari, GitHub ID: mlieberman85 | ||
|
|
||
| ### List of interested individuals | ||
| The SIG have a minimum of 3 members with 2 different organizational affiliations. | ||
| * Adolfo "Puerco" García Veytia, CNCF kubernetes SIG Release Technical Lead, OpenSSF Protobom, OpenVEX maintainer, Staklock, GitHub ID: puerco | ||
| * Justin Cappos, CNCG TUF, in-toto, Uptane, OpenSSF gittuf maintainer, New York University. GitHUb ID: JustinCappos | ||
|
Check failure on line 15 in process/sig-lifecycle-documents/security_baseline_sandbox_stage.md
|
||
| * David Wheeler, OpenSSF Best Practice Badge maintainer, OpenSSF, GitHub ID: david-a-wheeler | ||
| * Dana Wang, OpenSSF security baseline maintainer, OpenSSF, GitHub ID: danajoyluck | ||
|
|
||
| ### Governing Body | ||
| SIGs may report to an existing OpenSSF Working Group or directly to the TAC as their governing body. The SIG commits to providing the governing body quarterly updates on progress. | ||
| * Security Best Practices Working Group | ||
|
|
||
| ### SIG References | ||
| The SIG should provide a list of existing resources with links to the repository, and if available, website, a roadmap, demos and walkthroughs, and any other material to showcase the existing breadth, maturity, and direction of the SIG. | ||
| | Reference | URL | | ||
| |---------------------|-----| | ||
| | Repo | | | ||
| | Meeting Agenda | | | ||
| | OSSF Calendar Entry | | | ||
| | Website | | | ||
| | Security.md | | | ||
| | Roadmap | | | ||
| | code-of-conduct.md | | | ||
| | Demos | | | ||
| | Other | [OpenSSF security baseline](https://github.com/ossf/tac/blob/a90b9838739ac18df43197fdd89f045c1a1e4dc3/process/security_baseline.md) | | ||
