Merge pull request #294 from ossf/SecurityCRob-patch-3

Create Vuln_Disc_WG_graduation_stage.md
ossf · Mar 21, 2024 · a82df61 · a82df61
2 parents 090d7a0 + fe1ceb2
commit a82df61
Show file tree

Hide file tree

Showing 2 changed files with 48 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -52,7 +52,7 @@ The following Technical Initiatives have been approved by the TAC:
 
 | Name                         | Repository                                              | Notes                                                                                                  | Status     |
 | ---------------------------- | ------------------------------------------------------- | ------------------------------------------------------------------------------------------------------ | ---------- |
-| Vulnerability Disclosures      | https://github.com/ossf/wg-vulnerability-disclosures    | [Meeting Notes](https://github.com/ossf/wg-vulnerability-disclosures/tree/main/docs/meeting-notes)     | Incubating |
+| Vulnerability Disclosures      | https://github.com/ossf/wg-vulnerability-disclosures    | [Meeting Notes](https://github.com/ossf/wg-vulnerability-disclosures/tree/main/docs/meeting-notes)     | [Graduated](process/wg-lifecycle-documents/Vuln_Disc_wg_graduation_stage.md) |
 | Security Tooling               | https://github.com/ossf/wg-security-tooling             | [Meeting Notes](https://docs.google.com/document/d/1jzxhzIfkOMTagpeFWYoZpMKwHYeO4Gc7Eq5FcMFEw2c/edit#heading=h.wdz394z3k3h2) | Incubating |
 | Security Best Practices        | https://github.com/ossf/wg-best-practices-os-developers | [Meeting Notes](https://github.com/ossf/wg-best-practices-os-developers/blob/main/meeting-minutes.md)  | [Graduated](process/wg-lifecycle-documents/BEST_practices_wg_graduation_stage.md))  |
 | Metrics & Metadata             | https://github.com/ossf/wg-metrics-and-metadata         | [Meeting Notes](https://docs.google.com/document/d/14_ILDhSK3ymKqUTQeQBRgJKgfiy_ePoGZIe8s7p3K5E/edit)  | Incubating |

diff --git a/process/wg-lifecycle-documents/Vuln_Disc_wg_graduation_stage.md b/process/wg-lifecycle-documents/Vuln_Disc_wg_graduation_stage.md
@@ -0,0 +1,47 @@
+## Working Group graduation application
+Vulnerability Disclosures WG
+
+### WG has met all Incubating requirements
+  *  n/a
+
+### List of regular contributors
+The WG must have at least 5 contributors from at least 3 different organizations attending regularly as recorded in meeting minutes.
+- [Christopher "CRob" Robinson, Intel](https://github.com/SecurityCRob)
+- [Jonathan Leitschuh, Dan Kaminsky Fellowship - HUMAN](https://github.com/JLLeitschuh)
+- [Madison Oliver, GitHub Security Lab](https://github.com/taladrane)
+- [David A Wheeler, LF/OSSF](https://github.com/david-a-wheeler)
+- [Randall T. Vasquez (SKF/Gentoo/Homebrew)](https://github.com/ran-dall)
+- [Adolfo García Veytia, Chainguard & OpenVEX](https://github.com/puerco)
+- [Andrew Pollock, Google & OSV](https://github.com/andrewpollock)
+- [Arnaud Le Hors, IBM](https://github.com/lehors)
+- [Art Manion, ANALYGENCE](https://github.com/zmanion)
+- [Avishay Balter, Microsoft](https://github.com/balteravishay)
+- [Jay White, Microsoft](https://github.com/camaleon2016)
+- Jennifer Mitchell, Tidelift
+- [Ixchel Ruiz, JFrog](https://github.com/ixchelruiz)
+- [Marcus Meissner (SUSE)](https://github.com/msmeissn)
+- [Nathan Menhorn, AMD](https://github.com/nathan-menhorn)
+- [Nicole Schwartz, ActiveState](https://github.com/NicoleSchwartz/CircuitSwan)
+- Oliver Chang, Google & OSV
+- [Paulo Flabiano Smorigo (Ubuntu/Canonical)](https://github.com/pfsmorigo)
+- Yotam Perkal, Rezilion
+
+
+### Governance
+Projects have met at least 4 times over a period of at least 2 months since becoming incubating
+ - [Vuln Disc WG Charter](https://github.com/ossf/wg-vulnerability-disclosures/blob/main/CHARTER.md)
+ - [2024 Meeting Notes](https://docs.google.com/document/d/1AXkapzjZ-SxwcBN7rZeSstkzdapd3sbzfHDxz6A59Ic/edit)
+ - [Historic Meeting Notes](https://github.com/ossf/wg-vulnerability-disclosures/tree/main#meeting-notes)
+
+### TI References
+The TI must provide a list of existing resources with links to the repository, website, a roadmap, contributing guide, demos and walkthroughs, and any other material to showcase the existing breadth, maturity, and direction of the project.
+ Reference              | URL |
+|-----------------------|-----|
+| Repo                  | https://github.com/ossf/wg-vulnerability-disclosures    |
+| Meeting Agenda        |  https://docs.google.com/document/d/1AXkapzjZ-SxwcBN7rZeSstkzdapd3sbzfHDxz6A59Ic/edit   |
+| OSSF Calendar Entry   |  https://github.com/ossf/wg-vulnerability-disclosures/tree/main#meeting-times   |
+| Website               |  n/a   |
+| Contributing guide    | https://github.com/ossf/wg-vulnerability-disclosures/tree/main#get-involved    |
+| Security.md           |  https://github.com/ossf/wg-vulnerability-disclosures/blob/main/SECURITY.md   |
+| Roadmap               |  https://github.com/ossf/wg-vulnerability-disclosures/blob/main/README.md#roadmap   |
+| Other                 |  n/a   |