Dear Technical Oversight Committee, On June 3, 2021, the term for two of the three current Security TAG co-chairs, Sarah Allen (@ultrasaurus) and Jeyappragash JJ (@pragashj) comes to an end. The TOC e

Ashutosh Narkar, Aradhana Chetal and Andres Vega have made significant contributions to SIG-Security already, and along with their background and experience, would make great Technical Leads for our S

JJ already mentioned me in original email, but wanted to add my official +1 As SIG-Security co-chair, I strongly support the nomination of Emily Fox! Also, I wanted to add my thanks to out-going chair

I agree that there's no real replacement for face-to-face. However, virtual conference experiences are getting increasingly more interactive and a lot of conferences organize local gatherings for peop

Quick clarification -- we're seeking a vote on filling three Tech Lead slots, not asking TOC to choose between them!

Dear Technical Oversight Committee, In January, the SIG-Security co-chairs along with then TOC liason’s Joe Beda and Liz Rice, agreed to nominate three Tech Leads for SIG-Security: Justin Cappos, Emil

Bots can have delegated authority to sign things on behalf of their makers. It seems like it would be even more important for this kind of a bot to have a signature since if it was compromised or impe

It would be great if we could be tracking this effort on github... Chris A: do you think https://github.com/cncf/toc/issues/248 is a good issue to add on to? I'm not if you intended for this to be spe

picking up this thread... I think it would help the community and SIGs work with the TOC if we align on a process and document it clearly. In an effort to foster discussion and drive toward publishing

+1 NB TUF fills an important niche in the security of the cloud native ecosystem. Additionally, it's contributors and implementers play an active role in sharing security practices in CNCF SIG-Securit

It would be great to hear about what all the SIGs are doing at a TOC meeting, and have a regular time/place to share updates from SIG-Security. I think I'm missing a little context -- I couldn't find

I'll miss today's meeting. I left some comments on SIG App Charter -- seems like other folks have left comments. Assume the vote is on TOC Liaisons for the new SIG, might be good for new chairs to sub

Thanks for raising this Gareth. This is an open issue for SIG Security where we have a growing number of individuals participating in assessments and an open issue to write up guidelines: https://gith

Hi Quinton and MIchael, You are both correct. SAFE WG started as a group separate from CNCF. Many early members joined the group with the assumption that the goal of the group was to become a CNCF Wor

I applaud the definition of diversity as more than gender.... though we should be a bit careful about using the term "diversity of thought" (since that has emerged as a code word used by some who aren

I can't speak to what was discussed at the meeting, but I agree that the contributors need help. In my experience, they (mostly) do want to produce good documentation. Many projects would benefit from

+1 non-binding -- thanks everyone for all of your hard work on defining this! Note: I submitted a PR that transforms the original PR into a steady-state process, rather than a proposal, since after th

The CNCF is being looked to as a thought leader, and as I read the mission statement it seems to clearly evoke a strong leadership role “fostering and sustaining an ecosystem.” I like Liz’s framing of