tac
tac copied to clipboard
ossf
Technical Advisory Council
### Problem Statement S2C2F requires 4k in funding to pay the JDF contracted ISO Editor to help form the correct language in the S2C2F Specification in preparation for ISO PAS...
A number of WGs have interest in formal standardization efforts. One good example reviewed in this the TAC call earlier today was S2C2F: 1. S2C2F is working with LF's OpenChain...
Ref: https://openssf.slack.com/archives/C019Q1VEA87/p1726855033765969 > Hey all, sorry to have had the meeting cancelled. I know that someone (Craig McLuckie? Luke Hinds?) gave a presentation on [August 9](https://docs.google.com/document/d/1bFpHEbbEUf2rWiYXQY7cGg1HrmI9TqwaD8U_3Hi9A8I/edit#heading=h.lmlogisg3w41) about applying to donate...
We are applying to donate [`vuln-reach`](https://github.com/phylum-dev/vuln-reach) to the OpenSSF. We believe this meets the criteria for a sandbox submission. This project aims to commoditize determining whether or not a vulnerability...
[Vuln-Reach](https://github.com/phylum-dev/vuln-reach) is seeking Sandbox Project Entry into the OpenSSF under the Security Tools WG. The Vuln-Reach maintainers are requesting the "one-time IP policy and license review with The Linux Foundation"...
### Technical Initiative Repository Service for TUF / Security Software Repositories Working Group ### Lifecycle Phase incubation ### Funding amount unknown -- help needed ### Problem Statement RSTUF is about...
### Technical Initiative gittuf ### Lifecycle Phase sandbox ### Funding amount $50 a month ### Problem Statement We have been working on a GitHub app for gittuf hosted on Google...
In the November 2024 in person GB meeting, I'd like to update our MV(VS) and finalize our R. Please provide TAC input on the draft below by November 1: https://docs.google.com/document/d/122ujN1g9A-W30mUdemGE5eqA5FcURvvAdqVR84BcceM/edit
The AIML WG and S2C2F are developing a [data scientist persona](https://github.com/ossf/ai-ml-security/issues/22). Since the security toolbelt sig is archived, where can the [ongoing personas be maintained/updated](https://github.com/ossf/toolbelt/tree/main/personas) as a shared OpenSSF resource...
We are already incubating, but we never finalize the lifecycle process. Filling the missing pieces with this PR.
