-
Per discussion with the security wg at the 11/23/2023 wg meeting, an issue has been created to kick off and help track the fuzzing security initiative scheduled for December 2023. A general descripti…
-
Hi Protobom Team! When you get a chance, can you please add the alignment to the OpenSSF Security Tooling WG to your main page? I am sharing the project with an internal team, and am trying to also sh…
-
@zmanion has presented to the working group several times now about VINCE (now called "Advise"). Advise(1) is an open source tool that provides a platform to manage coordinated vulnerability disclosu…
-
As commented in #884 seems like there is an interest to explore this idea.
**Context**
I discovered that we already completed the process for [Nodejs](https://bestpractices.coreinfrastructure.or…
-
# Background
To raise the visibility of the EEF, I would like to add a `README` to the Organisation GitHub page.
Example: https://github.com/ossf
It should contain:
* Logo (best would be wi…
-
### Description
Intent
The intent of this assessment is to ascertain where the ecosystem is nearing comprehensiveness, where there are opportunities of innovation, and to redirect focus of communi…
-
Should some of security and green metrics be scoped whithin CATS metric? (This was asked by Julien during IETF 121)
-
This meta-issue tracks the [wide review](https://www.w3.org/Guide/documentreview/#how_to_get_horizontal_review) of [the 9 July Working Draft of IFT](https://www.w3.org/TR/2024/WD-IFT-20240709/)
The…
-
Date, time and location information has been sent to the TAG Chair email list.
Agenda
* Review / deep dive on the state of cloud native reports from TAGs (please reply to this issue with links to th…
-
### Description
When navigating to https://tag-security.cncf.io/community/working-groups/ there is currently no landing page for working groups. Suggesting that we create a `community/working-group…