- Openssf-Wg-Best-Practices
- Messages
Search
| Request for an interview: expert opinion on the Cyber Resilience Act Dear Mr. Rene-Corail,I hope this email finds you well. My name is Lorenzo Lupoli, and I am a second-year student at LUISS Guido Carli's "Policy and Governance in Europe" master's program. Currently, ByLorenzo Lupoli <lorenzo.lupoli@...>·#277· |
| FYI: Tidelift TACOS framework - machine-readable specification supporting US OMB memo M-22-18 and NIST SSDF FYI:Tidelift has developed something called the TACOS framework, whereTACOS = Trusted Attestation and Compliance for Open Source; you can see more here:https://github.com/tacosframeworkTACOS By David A. Wheeler·#276· |
| Sync call with the Scorecard team following up on our last WG call (28.3), we have a meeting with the Scorecard team setup for Thursday the 13th at 14:00 ET.The goal is to align on the WG projects and how they fit into Scorecard By Avishay Balter·#275· |
| [RFA][VOTE][SECOND REQUEST] WG Vote to adopt the Memory Safety SIG Hello team - this is the second request to gather a quorum of votes to accept or deny the request to adopt the Memory Safety SIG as part of our working group. We've had five eligible working group By CRob·#274· |
| [RFC] VOTE - Create new Memory Safety SIG underneath BEST WG - DUE by 28March2023 Team - We have opened an issue(1) for WG members(2) to vote on the potential for our WG to adopt a new SIG aligned with the Mobilization Plan (stream 4) around Memory Safety. Please ask questions, By CRob·#273· |
| Re: Memory Safety SIG introduction Very interesting Avishay! I’m looking forward to hearing more and seeing the proposal. This would align with Stream 4 of the Mobilization Plan(1). I encourage the group to do a quick read on both By CRob·#272· |
| FYI: Endor Labs' "Introducing The Top 10 Open Source Software (OSS) Risks" All: FYI.Endor Labs released on 2023-03-01 a document titled "The Top 10 Open Source Software (OSS) Risks". Their page says that they "teamed up with over 20 CISOs and CTOs to identify the top 10 By David A. Wheeler·#271· |
| Memory Safety SIG introduction The team behind the forming Memory Safety SIG would like to present its proposed agenda, get feedback from the community members and to be considered as a SIG under theBEST working group, at the By Avishay Balter·#270· |
| [FYI] Pre-read for 7March TAC Call - BEST WG TAC Report Updates Hello TAC-friends! On our next call the BEST WG will be reporting out on our current and upcoming activities. To that end, we're providing our report(1) today as a pre-read for you all. We're By CRob·#269· |
Fam - Below details the steps that will be taken this year to elect the 2023-2024 TAC for the OpenSSF. Anyone interested in participating, details to register to vote, details about the TAC By CRob·#268· |
| Proposed modification to concise guide for evaluating OSS I have a proposed modification to the "Concise Guide to Evaluating OSS".The primary change I propose is that *you* don't have to evaluate code, you couldhire someone else, read reviews by others, By David A. Wheeler·#267· |
| [FYI] C/C++ Compiler Best Practices Guide Meeting time All - to anyone interested, we are assembling a focused group to collaborate on the C/C++ Compiler BP Guide! We will be meeting Wednesdays from 9am EST / 1400 UTC starting on 15Feb and meeting every By CRob·#266· |
| [FYI] = C/C++ Compiler Flags Guide Meeting time poll Team - I've created a doodle poll to try and find a common time to assemble and collaborate on our C/C++ Compiler Flag guide(2). Please share this with anyone you feel would add value to our group By CRob·#265· |
| [FYI] SCM BP Guide working sessions Anyone interested in working on a source code management best practices guide is welcome to join us every other Wednesday from 10-11am EST starting this week. We'll spend some time organizing By CRob·#264· |
| [RFC] EDU.SIG Mobilization Plan Proposal ready for review TAC - The OSSF's EDU.SIG team has finished our "final" draft of our revisions to the Mobilization Plan Stream 1. The relevant links and details about the plan can be found in TAC Issue #134 (1). By CRob·#263· |
| [RFC] Setup APAC TZ-friendly monthly call? Team - With one of my other working groups, we've had a request to set up calls that allow folks from APAC to participate. Would this group be interested and open to participating in such an endeavor By CRob·#262· |
| [RFI] Meeting time for SCM Guide poll BEST Working Group - We've set up a poll to find a time to collaborate on our next project, a Source Code Management Best Practices guide. Please vote(1) for times you are available if you desire to By CRob·#261· |
| [FYI] EDU.SIG Section 1 Meeting Canceled for Thursday 01-05 FYI,We will not be having the scheduled Collect & Curate Content EDU.SIG meeting this Thursday.Thanks!Dave-- Dave RussoSenior Principal Program Manager, Secure DevelopmentRed Hat Product By Dave Russo·#260· |
| [FYI] Vote for Time to hold DEI Subcommittee Meetings by EoD Friday 1/6 Hello all - The DEI subcommittee would LOVE your opinion on a bi-weekly meeting time that works out for the majority of folks who would like to join us in our focused efforts to move forward to By CRob·#259· |
| Re: [FYI] New EDU.SIG DEI Subcommittee I have a conflict at 9am PST. 8am works for me.Thank you!JayGet Outlook for Android<https://aka.ms/AAb9ysg>________________________________Sent: Thursday, December 15, 2022 6:53:44 AMTo: Jay By Jay White (Microsoft)·#258· |
41 - 60 of 317
- previous page
- 1
- 2
- 3
- 4
- 5
- next page
