Skip to content

Latest commit

 

History

History
70 lines (43 loc) · 5.5 KB

README.md

File metadata and controls

70 lines (43 loc) · 5.5 KB

OpenSSF Technical Advisory Council (TAC)

The OpenSSF Technical Advisory Council is responsible for oversight of the various Technical Initiatives of the OpenSSF.

Get Involved

Official communications occur on the TAC mailing list. Manage your subscriptions to Open SSF mailing lists.

Informal discussions occur in the TAC channel of the OpenSSF Slack.

Use Github Issues to request and discuss agenda items.

Meetings

The TAC meetings minutes are online and appear on the OpenSSF Community Calendar.

Meetings are also recorded and posted to the OpenSSF YouTube channel.

Members

Name Email Organization
Abhishek Arya aarya@google.com Google
Aeva Black aeva.black@microsoft.com Microsoft
Bob Callaway bcallaway@google.com Google
CRob Robinson christopher.robinson@intel.com Intel
Dan Lorenc dlorenc@chainguard.dev Chainguard
Josh Bressers josh.bressers@anchore.com Anchore
Luke Hinds lhinds@redhat.com Red Hat

Charter

The TAC is chartered as part of the Open Source Security Foundation Charter.

Technical Initiatives

The following Technical Initatives have been approved by the TAC:

Working Groups

Name Repository Notes Status
Vulnerability Disclosures https://github.com/ossf/wg-vulnerability-disclosures Meeting Notes Incubating
Security Tooling https://github.com/ossf/wg-security-tooling Meeting Notes Incubating
Security Best Practices https://github.com/ossf/wg-best-practices-os-developers Meeting Notes Incubating
Identifying Security Threats https://github.com/ossf/wg-identifying-security-threats Meeting Notes Incubating
Securing Critical Projects https://github.com/ossf/wg-securing-critical-projects Meeting Notes Incubating
Supply Chain Integrity https://github.com/ossf/wg-supply-chain-integrity Meeting Notes Incubating

Projects

Name Repository Notes Status
Sigstore github.com/sigstore Meeting Notes Incubating
GNU Toolchain Improvements Coming Soon ? Incubating
Alpha Omega Coming Soon ? Incubating

Charters for these Technical Intiatives are located in the Charters directory of this repository.

Antitrust Policy

Linux Foundation meetings involve participation by industry competitors, and it is the intention of the Linux Foundation to conduct all of its activities in accordance with applicable antitrust and competition laws. It is therefore extremely important that attendees adhere to meeting agendas, and be aware of, and not participate in, any activities that are prohibited under applicable US state, federal or foreign antitrust and competition laws.

Examples of types of actions that are prohibited at Linux Foundation meetings and in connection with Linux Foundation activities are described in the Linux Foundation Antitrust Policy available at http://www.linuxfoundation.org/antitrust-policy. If you have questions about these matters, please contact your company counsel, or if you are a member of the Linux Foundation, feel free to contact Andrew Updegrove of the firm of Gesmer Updegrove LLP, which provides legal counsel to the Linux Foundation.