Tracking Issue: Move Secure Software Factory Repo to OpenSSF!

[dlorenc]

The Secure Software Factory (https://github.com/thesecuresoftwarefactory/ssf) that was demoed on the 19th is now approved to move into the OpenSSF under this WG.

We have a few logistical items to handle:

• [ ] Check the license/contribution guidelines
• [ ] Add the OSSF Code of Conduct: https://github.com/ossf/scorecard/blob/main/CODE_OF_CONDUCT.md
• [ ] Transfer the repository itself! I think I have the right permissions to accept the transfer once initiated

We should aim to do this by Tuesday for the announcement on Wednesday!

[dlorenc]

cc @mlieberman85

[dlorenc]

Just to clarify for anyone following along - after the demo meeting on 19th and a discussion in Slack on the 20th we've formally accepted the SSF to join the Supply Chain Integrity WG! This issue is tracking the logistical details required for the move itself.

[mlieberman85]

@dlorenc I think it's worthwhile to maybe do another refresh of this. We've been merged in, and I worked with Jory and others to make sure org falls under LF/OpenSSF ownership, however I think there might be a handful of license, CoC and other things that might be missing.

[dlorenc]

@mlieberman85 could you send an update to the README to add the FRSCA project, then close this out?

[mlieberman85]

Yes, let me do that right now.

[melba-lopez]

@mlieberman85 this issue appears to have been resolved per PR#54. Is that correct?

[mlieberman85]

Yes that is correct. This can be closed