The OpenSSF Technical Advisory Council is responsible for oversight of the various Technical Initiatives of the OpenSSF.
Official communications occur on the TAC mailing list. Manage your subscriptions to Open SSF mailing lists.
Informal discussions occur in the TAC channel of the OpenSSF Slack.
Use Github Issues to request and discuss agenda items.
The TAC meetings minutes are online and appear on the OpenSSF Community Calendar.
Meetings are also recorded and posted to the OpenSSF YouTube channel.
| Name | Organization | |
|---|---|---|
| Maya Kaczorowski | mayakacz@github.com | GitHub |
| Dan Lorenc | dlorenc@google.com | |
| Rao Lakkakula | rao.lakkakula@jpmchase.com | JPMorgan Chase |
| Phil Estes | estesp@us.ibm.com | IBM |
| Luke Hinds | lhinds@redhat.com | RedHat |
| Ryan Haning | ryhaning@microsoft.com | Microsoft |
| Jennifer Fernick | jennifer.fernick@nccgroup.com | NCC Group |
The TAC is chartered as part of the Open Source Security Foundation Charter.
The following Technical Initatives have been approved by the TAC:
| Name | Repository | Notes | Status |
|---|---|---|---|
| Vulnerability Disclosures | https://github.com/ossf/wg-vulnerability-disclosures | Meeting Notes | Incubating |
| Security Tooling | https://github.com/ossf/wg-security-tooling | Meeting Notes | Incubating |
| Security Best Practices | https://github.com/ossf/wg-best-practices-os-developers | Meeting Notes | Incubating |
| Identifying Security Threats | https://github.com/ossf/wg-identifying-security-threats | Meeting Notes | Incubating |
| Securing Critical Projects | https://github.com/ossf/wg-securing-critical-projects | Meeting Notes | Incubating |
| Developer Identity Verification | https://github.com/ossf/wg-developer-identity | Meeting Notes | Incubating |
Charters for these Technical Intiatives are located in the Charters directory of this repository.