create a new SIG - Security Baseline SIG #562
Labels
Comments
|
This was discussed in the 16july2024 WG call and the group agreed to adopt the Baseline as a SIG of the BEST WG. Welcome folks! We're looking forward to collaborating on this. |
SecurityCRob
added
Product: Security Baseline
good first issue
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Proposed focus, intent, goals, and/or deliverables
The goal of this SIG is to evolve OpenSSF security baseline for Linux Foundation wide adoption.
For OpenSSF adoption of the security baseline, there needs to be a home for tracking the adoption, for maintainers to raise issues to refine the security baseline, merge the baseline back to TAC lifecycle, and for OpenSSF to develop the roadmap for the security baseline. It will provide a venue for early adopters to share their reusable code and findings with other maintainers. The pilot adoption builds the foundation for wider adoption of the security baseline in OpenSSF and in Linux Foundation.
This SIG creates a venue for other participating foundations to help evolve the OpenSSF security baseline into a security baseline that can be applied to a broad range of software-based projects. The group will define the right level of risks that the security baseline is applicable for, the effectiveness measurement of the security baseline, and the adoption path of the security baseline at the minimum.
Members of this group will be from various Linux foundations and entities outside of Linux Foundation. Reducing duplicate effort and achieving a higher level of security across Linux Foundation participating foundations is one of the goals of the group.
List SIG Lead(s)
The SIG must have a minimum of 1 Lead
List of interested individuals
The SIG have a minimum of 3 members with 2 different organizational affiliations.
The text was updated successfully, but these errors were encountered: