Giter Site home page Giter Site logo

rarkins / wg-vulnerability-disclosures Goto Github PK

View Code? Open in Web Editor NEW

This project forked from ossf/wg-vulnerability-disclosures

0.0 1.0 0.0 88 KB

Our vision is an open source software ecosystem where the time to fix a vulnerability and deploy that fix across the ecosystem is measured in minutes, not months.

License: Apache License 2.0

wg-vulnerability-disclosures's Introduction

Vulnerability Disclosures

Our vision is an open source software ecosystem where the time to fix a vulnerability and deploy that fix across the ecosystem is measured in minutes, not months.

Objectives and Key Results (CY 2020)

The first objectives we're using to track our progress towards that vision are:

  • Create a unified format and API for vulnerability reporting (from researchers to maintainers) and drive broad adoption of it across the open source software ecosystem
  • Create a unified format, API, and process for coordinated disclosure (from maintainers to users/the world) and drive broad adoption

Outputs

Governance

The CHARTER.md outlines the scope and governance of our group activities.

Meetings

Schedule

The working group meets every three weeks, on Monday at 7am Pacific. Currently we are using Zoom for working group meetings. The invite is available on the OpenSSF Community Calendar.

Contact Marcin if you wish to be added to the invite list.

Agenda

Meeting agenda is published prior to the meeting in a GitHub issue with the label meeting. The issue contains agenda items and logistics details like date, time, Zoom link and a link to meeting notes document.

Who is in this Working Group?

We use the vulnerability-disclosures-wg GitHub team.

We communicate on the Vulnerability Disclosure mailing list. Manage your subscriptions to Open SSF mailing lists.

wg-vulnerability-disclosures's People

Contributors

marcinhoppe avatar rhaning avatar joshbressers avatar foxboron avatar securitycrob avatar dodys avatar gravax avatar jasonkeirstead avatar msmeissn avatar mdressman avatar mayakacz avatar nicoleschwartz avatar pfsmorigo avatar reedloden avatar rimusz avatar szepeviktor avatar

Watchers

James Cloos avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.