tac
tac copied to clipboard
ossf
Technical Advisory Council
We need to define the minimal security requirements/baseline for OpenSSF projects. The requirements will include projects at different stages of the lifecycle. This would be an extension of issue [214...
The OpenSSF staff members have been administering various repo-level configurations. Now all the projects are under the newly acquired enterprise account, we'd like TAC to advise on how to best...
The TAC shall create simple, accessible guidelines to help empower our communities to understand what tools and channels are available, how best to communicate with distributed asynchronous communities, and where...
During the xz util vulnerability response, OSSF staff asked TAC if each OSSF project had an SBOM to use to analyze to see if any OSSF projects were vulnerable. I...
After all the projects are done self-identifying the initial stage they are in, I propose we adjust the incubating project lifecycle to post an SBOM on their github repo, maintain...
We need a process for a spec created in a Project to become a standard. We can build out what this looks like, but there should a way for the...
Hello, TAC. The DEI WG is bringing forward this proposal for funding for an intern on the GUAC project. GUAC is an incubating project under the SCI WG. Please see...
If you can't do something in OpenSSF that you think you should be able to do, or CAN do something you DON'T think you should do, reply to this issue...
We may want to consider a deprecation policy for projects, SIGs , or WGs where possible. This would aid in the justification for archiving and allow for a proposed date...
The TAC would like to invite staff stakeholders: Chief Architect, Ecosystem Strategist and Community Engagement Manager to present to the TAC their 2024 outcomes so that the TAC can both...