Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Secure Software Supply Chain #304

Closed

Conversation

arsulegai
Copy link
Member

  1. Introduce governance mechanism for secure software supply chain in LFDT.
  2. Introduce a mandatory scorecard badge.
  3. Introduce governance mechanism for release artifacts signing and verification.

1. Introduce governance mechanism for secure software supply
chain in LFDT.
2. Introduce a mandatory scorecard badge.
3. Introduce governance mechanism for release artifacts signing
and verification.

Signed-off-by: S m, Aruna <[email protected]>
@arsulegai arsulegai requested a review from a team September 19, 2024 17:01
@tkuhrt
Copy link
Contributor

tkuhrt commented Sep 19, 2024

We should move this PR over to the new repo: https://github.com/LF-Decentralized-Trust/governance/ under the tac/governing-documents folder.

@arsulegai
Copy link
Member Author

Thanks @tkuhrt , migrated to LF-Decentralized-Trust/governance#26

@arsulegai arsulegai closed this Sep 20, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants