Add files via upload. Replacing the current spec pdf with the formatted version

ossf / s2c2f

The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously improve the S2C2F guide which outlines and defines how to securely consume Open Source Software (OSS) dependencies into the developer’s workflow.

Other

167 stars 23 forks source link

Add files via upload. Replacing the current spec pdf with the formatted version #44

Closed camaleon2016 closed 3 months ago

camaleon2016 commented 3 months ago

Adding this to replace the current pdf version.

joshuagl commented 3 months ago

I recommend not including binary files in git, as it is easy for them to become stale and git doesn't handle these kinds of files very well. Instead, I'd recommend having some GitHub automation which automatically builds the PDF from the markdown file as the spec changes. This generated "release" file can be linked to from the README, if desired, and from the s2c2f website being discussed in #42

adriandiglio commented 3 months ago

Great suggestions and discussion! As discussed in today's (4/9/2024) S2C2F community call, we agreed about maintaining the spec in markdown, and then configuring automation using GitHub Actions to build it as a PDF. We won't be manually uploading PDFs anymore. Therefore, we are going to close/reject this PR.