-
Notifications
You must be signed in to change notification settings - Fork 60
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[IP policy and license review] Vuln-Reach Sandbox Project Entry #387
Comments
We will discuss this at the 1October TAC call at 11am ET. Please have representatives from the project and the Working Group in attendance. Please review https://github.com/ossf/tac/blob/main/process/project-lifecycle.md#submission-process |
@louislang, please make sure to take a close look at the Project Lifecycle document to make sure we get all of the right information in to the Sandbox application. Specifically we need to make sure the application covers these aspects:
Additionally, we need to make sure we reach the security baseline for a sandbox project. |
Are we doing the legal review in parallel, or waiting for the PR to be approved then doing the legal review? |
Historically we've done this in parallel. |
@riaankleinhans can you verify this is with LF Legal and whether there is any update? |
@louislang I have created a project in LFX for review by the LF Project formation team. |
Vuln-Reach is seeking Sandbox Project Entry into the OpenSSF under the Security Tools WG.
The Vuln-Reach maintainers are requesting the "one-time IP policy and license review with The Linux Foundation" as part of our sandbox application.
VulnReach Links
The text was updated successfully, but these errors were encountered: