Date
1 - 1 of 1
Hyperledger Security Process Task Force Updates
Hello all,
In the previous meeting on 20th May 2022, it was noted that the current schedule of running meetings on Friday is not preferable for many reasons.
The upcoming meeting will be moved to June 7th (Tuesday) and will continue to run alternate Tuesdays. The current calendar invite will be updated, please watch out.
There are 10 recommendations so far (https://wiki.hyperledger.org/display/TF/Task+Force+Recommendations) and some of which require an action plan. In the next meeting, we will be discussing proposals on
- Check if there are gaps for Hyperledger projects if https://github.com/ossf/scorecard is recommended.
- Established process for responsible vulnerability disclosure https://github.com/ossf/wg-vulnerability-disclosures.
- Recommend changes in the security reporting template. Inspired by https://github.com/ossf/oss-vulnerability-guide/tree/main/templates/security_policies.
If any of these items interests you, feel free to add a comment and come up with a proposal.
Peter: Looking forward to your final proposal on CVE scoring questionnaire.
See you all on June 7th (Tuesday).
Regards,
Arun