Open butler54 opened 1 month ago
Thanks @butler54. I have added this as a topic to our next Oversight Committee meeting occurring next week. I would tentatively recommend that this be covered as part of a design proposal to centralized our org automation and CI/CD workflows.
compliance-trestle
andcompliance-trestle-fedramp-plugin
are independently maintained projects on pypi with lose governance. Recommend that stricter governance is managed (either by creating an org or linking with the lifecycle of github maintainers).