From 277f7bedce5dba02d7b1b1ea17a8e8c0f381c566 Mon Sep 17 00:00:00 2001 From: CRob <69357996+SecurityCRob@users.noreply.github.com> Date: Fri, 1 Mar 2024 12:05:51 -0500 Subject: [PATCH 1/8] Update PROJECT_NAME_incubation_stage.md Signed-off-by: CRob <69357996+SecurityCRob@users.noreply.github.com> --- .../PROJECT_NAME_incubation_stage.md | 38 ++++++++++++++----- 1 file changed, 29 insertions(+), 9 deletions(-) diff --git a/process/templates/PROJECT_NAME_incubation_stage.md b/process/templates/PROJECT_NAME_incubation_stage.md index 98a5c6d7..d4c394ef 100644 --- a/process/templates/PROJECT_NAME_incubation_stage.md +++ b/process/templates/PROJECT_NAME_incubation_stage.md @@ -1,5 +1,8 @@ ## Project incubation application +### Project has met all Sandbox requirement + * "link to sandbox PR" + ### List of project maintainers The project must have a minimum of three maintainers with a minimum of two different organizational affiliations. * "name, affiliation, GitHub ID" @@ -14,7 +17,19 @@ The project should be able to show adoption by multiple parties and the adoption ### Governance Projects must have documented, initial project governance - * "link to governance documents" + * "link to governance documents/Charter" +Projects must have met publicly at least 5 times + * "link to meeting agenda" +Project must have a TAC sponsor + * "name of TAC sponsor to assist TI" +Project must have defined Contributor Guide + * "link to contributor guide" +Project has defined group goverance + * "link to charter or other document describe how group is managed" +Project has attained an OpenSSF Best Practice Badge at "passing" level + * "link to OpenSSF Badge" +Project is integrated into the OpenSSF Scorecard + * "link to Scorecard output" ### IP policy and licensing due diligence When contributing an existing Project to the OpenSSF, the contribution must undergo license and IP due diligence by the Linux Foundation (LF). This step is only needed for the initial donation and only applicable here, if the project intends to join the OpenSSF Incubation stage. @@ -23,11 +38,16 @@ When contributing an existing Project to the OpenSSF, the contribution must unde ### Project References The project should provide a list of existing resources with links to the repository, website, a roadmap, contributing guide, demos and walkthroughs, and any other material to showcase the existing breadth, maturity, and direction of the project. -| Reference | URL | -|--------------------|-----| -| Repo | | -| Website | | -| Contributing guide | | -| Roadmap | | -| Demos | | -| Other | | + Reference | URL | +|---------------------|-----| +| Repo | | +| Meeting Agenda | | +| OSSF Calendar Entry | | +| Website | | +| Contributing guide | | +| Security.md | | +| Roadmap | | +| Demos | | +| Best Practices Badge | | +| Scorecard integration | | +| Other | | From 76dca89561671c37801141f298c066125df68ef7 Mon Sep 17 00:00:00 2001 From: CRob <69357996+SecurityCRob@users.noreply.github.com> Date: Mon, 4 Mar 2024 08:50:14 -0500 Subject: [PATCH 2/8] Update process/templates/PROJECT_NAME_incubation_stage.md Co-authored-by: Zach Steindler Signed-off-by: CRob <69357996+SecurityCRob@users.noreply.github.com> --- process/templates/PROJECT_NAME_incubation_stage.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/process/templates/PROJECT_NAME_incubation_stage.md b/process/templates/PROJECT_NAME_incubation_stage.md index d4c394ef..31d5900c 100644 --- a/process/templates/PROJECT_NAME_incubation_stage.md +++ b/process/templates/PROJECT_NAME_incubation_stage.md @@ -24,8 +24,6 @@ Project must have a TAC sponsor * "name of TAC sponsor to assist TI" Project must have defined Contributor Guide * "link to contributor guide" -Project has defined group goverance - * "link to charter or other document describe how group is managed" Project has attained an OpenSSF Best Practice Badge at "passing" level * "link to OpenSSF Badge" Project is integrated into the OpenSSF Scorecard From 08e6583f70476e60f993e243f43438e615709d81 Mon Sep 17 00:00:00 2001 From: CRob <69357996+SecurityCRob@users.noreply.github.com> Date: Mon, 4 Mar 2024 08:50:25 -0500 Subject: [PATCH 3/8] Update process/templates/PROJECT_NAME_incubation_stage.md Co-authored-by: Zach Steindler Signed-off-by: CRob <69357996+SecurityCRob@users.noreply.github.com> --- process/templates/PROJECT_NAME_incubation_stage.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/process/templates/PROJECT_NAME_incubation_stage.md b/process/templates/PROJECT_NAME_incubation_stage.md index 31d5900c..cbcb69e7 100644 --- a/process/templates/PROJECT_NAME_incubation_stage.md +++ b/process/templates/PROJECT_NAME_incubation_stage.md @@ -18,8 +18,6 @@ The project should be able to show adoption by multiple parties and the adoption ### Governance Projects must have documented, initial project governance * "link to governance documents/Charter" -Projects must have met publicly at least 5 times - * "link to meeting agenda" Project must have a TAC sponsor * "name of TAC sponsor to assist TI" Project must have defined Contributor Guide From 9f362f0c990f3135a51b211f11d6df7c09e5955e Mon Sep 17 00:00:00 2001 From: CRob <69357996+SecurityCRob@users.noreply.github.com> Date: Mon, 4 Mar 2024 08:50:33 -0500 Subject: [PATCH 4/8] Update process/templates/PROJECT_NAME_incubation_stage.md Co-authored-by: Zach Steindler Signed-off-by: CRob <69357996+SecurityCRob@users.noreply.github.com> --- process/templates/PROJECT_NAME_incubation_stage.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/process/templates/PROJECT_NAME_incubation_stage.md b/process/templates/PROJECT_NAME_incubation_stage.md index cbcb69e7..df31576f 100644 --- a/process/templates/PROJECT_NAME_incubation_stage.md +++ b/process/templates/PROJECT_NAME_incubation_stage.md @@ -18,8 +18,6 @@ The project should be able to show adoption by multiple parties and the adoption ### Governance Projects must have documented, initial project governance * "link to governance documents/Charter" -Project must have a TAC sponsor - * "name of TAC sponsor to assist TI" Project must have defined Contributor Guide * "link to contributor guide" Project has attained an OpenSSF Best Practice Badge at "passing" level From 3347b7a3d0cb904dd6e6e50a82518a8df8dc865a Mon Sep 17 00:00:00 2001 From: Jay White <103074150+camaleon2016@users.noreply.github.com> Date: Tue, 12 Mar 2024 13:15:44 -0700 Subject: [PATCH 5/8] Update PROJECT_NAME_incubation_stage.md Adding a requirement for project leadership Signed-off-by: Jay White <103074150+camaleon2016@users.noreply.github.com> --- process/templates/PROJECT_NAME_incubation_stage.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/process/templates/PROJECT_NAME_incubation_stage.md b/process/templates/PROJECT_NAME_incubation_stage.md index df31576f..50b5033b 100644 --- a/process/templates/PROJECT_NAME_incubation_stage.md +++ b/process/templates/PROJECT_NAME_incubation_stage.md @@ -3,6 +3,11 @@ ### Project has met all Sandbox requirement * "link to sandbox PR" +### List Project Chair(s) and or Vice Chair +The Project must have a minimum of 1 Chair + + * "name, affiliation, GitHUb ID" + ### List of project maintainers The project must have a minimum of three maintainers with a minimum of two different organizational affiliations. * "name, affiliation, GitHub ID" From 016ef7e65c2dba0ec6f03d08fcaeb80635cd4d7d Mon Sep 17 00:00:00 2001 From: CRob <69357996+SecurityCRob@users.noreply.github.com> Date: Wed, 13 Mar 2024 12:16:49 -0400 Subject: [PATCH 6/8] Update process/templates/PROJECT_NAME_incubation_stage.md Co-authored-by: Zach Steindler Signed-off-by: CRob <69357996+SecurityCRob@users.noreply.github.com> --- process/templates/PROJECT_NAME_incubation_stage.md | 5 ----- 1 file changed, 5 deletions(-) diff --git a/process/templates/PROJECT_NAME_incubation_stage.md b/process/templates/PROJECT_NAME_incubation_stage.md index 50b5033b..df31576f 100644 --- a/process/templates/PROJECT_NAME_incubation_stage.md +++ b/process/templates/PROJECT_NAME_incubation_stage.md @@ -3,11 +3,6 @@ ### Project has met all Sandbox requirement * "link to sandbox PR" -### List Project Chair(s) and or Vice Chair -The Project must have a minimum of 1 Chair - - * "name, affiliation, GitHUb ID" - ### List of project maintainers The project must have a minimum of three maintainers with a minimum of two different organizational affiliations. * "name, affiliation, GitHub ID" From b1d50e02632d98deba022746f4f2a3c44ffc84a8 Mon Sep 17 00:00:00 2001 From: CRob <69357996+SecurityCRob@users.noreply.github.com> Date: Mon, 18 Mar 2024 14:03:22 -0400 Subject: [PATCH 7/8] Update PROJECT_NAME_incubation_stage.md Signed-off-by: CRob <69357996+SecurityCRob@users.noreply.github.com> --- process/templates/PROJECT_NAME_incubation_stage.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/process/templates/PROJECT_NAME_incubation_stage.md b/process/templates/PROJECT_NAME_incubation_stage.md index df31576f..16aab150 100644 --- a/process/templates/PROJECT_NAME_incubation_stage.md +++ b/process/templates/PROJECT_NAME_incubation_stage.md @@ -1,7 +1,7 @@ ## Project incubation application ### Project has met all Sandbox requirement - * "link to sandbox PR" + * "link to sandbox PR if one exists" ### List of project maintainers The project must have a minimum of three maintainers with a minimum of two different organizational affiliations. From d27cca84a11558677a4de9248d56c6ccfe1b5248 Mon Sep 17 00:00:00 2001 From: CRob <69357996+SecurityCRob@users.noreply.github.com> Date: Mon, 18 Mar 2024 14:03:29 -0400 Subject: [PATCH 8/8] Update process/templates/PROJECT_NAME_incubation_stage.md Co-authored-by: Marcela Melara Signed-off-by: CRob <69357996+SecurityCRob@users.noreply.github.com> --- process/templates/PROJECT_NAME_incubation_stage.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/process/templates/PROJECT_NAME_incubation_stage.md b/process/templates/PROJECT_NAME_incubation_stage.md index 16aab150..5a32ef40 100644 --- a/process/templates/PROJECT_NAME_incubation_stage.md +++ b/process/templates/PROJECT_NAME_incubation_stage.md @@ -16,6 +16,8 @@ The project should be able to show adoption by multiple parties and the adoption * "description of adoption" ### Governance +Project must have met publicly at least 5 times + * Link to public meeting notes (or ideally recordings) Projects must have documented, initial project governance * "link to governance documents/Charter" Project must have defined Contributor Guide