The purpose of the Metrics & Metadata (formerly Identifying Security Threats) working group is to enable stakeholders to have informed confidence in the security of open source projects. We do this by collecting, curating, and communicating relevant metrics and metadata from open source projects and the ecosystems of which they are a part.
Let's document the goals, customer scenarios and requirements from three separate yet related workstreams and see if it makes sense to pull these together under common infrastructure as time goes on.
Here is a document to begin capturing our thoughts.
Let's document the goals, customer scenarios and requirements from three separate yet related workstreams and see if it makes sense to pull these together under common infrastructure as time goes on.
Here is a document to begin capturing our thoughts.
https://docs.google.com/document/d/1qoCnDW6eo17pZv09P114D07YpgFD45AEB0lgY8ixOyY/edit#