-
### Checked for duplicates
Yes - I've already checked
### Best Practice Guide Category
Software Lifecycle
### Best practice guide URL
[Python Starter Kit](https://nasa-ammos.github.io/s…
-
In the FHIR [Provenance resource example](https://simplifier.net/MedizininformatikInitiative-ModulConsent/examples-Example-MII-Consent-Provenance/~json) for stating the software that was used to docum…
-
### Describe the enhancement requested
For now this is more of a wishlist/discussion issue, but could grow into a more precise meta-task if we want to move forward.
There have been growing conce…
-
## Summary
The current Process structure is heavily influenced by the concept of a JVM jar file. Unfortunately this is not how most software is actually released and managed. This structure…
-
# Signing ML Artifacts: Building towards tamper-proof ML metadata records
**Authors:**
* Mihai Maruseac
* Daniel Major
* Eoin Wickens
## **Summary**
Cryptographic signing is widely used th…
-
Add support to score SBOM generated in SWID format
> SWID tags can be used as an SBOM, since they provide identifying information for a software
> component, a listing of files and cryptographic…
-
### Is your feature request related to a problem? Please describe.
In the current times we live, where software provenance is a must for software adoption in regulated environments, we need to make s…
-
As #10 shows, we are starting to add on top of the provided YAML file. These things need to be documented and stored along the output before we move to a distributed system.
The provenance informat…
-
### Summary of the new feature / enhancement
> As an infrastructure engineer, I want to be able to review a software bill of materials (SBOM) for a resource before I use it in my production environme…
-
### What is the problem this feature will solve?
@adamginsburg and I were discussing propagation of provenance through calculations using `Quantity` objects. It would be useful for data (i.e., `Qua…