Attendees & Representation (default sort: member first name)

TAC Members and Project representatives should mark their attendance below

LF Staff: @Casey Cain @Kenny Paul @Ranny Haiby @Sandra Jackson (Deactivated) @LJ Illuzzi 

Community: @bwick @Dave Thaler 

Agenda

• We will start by mentioning the project's Antitrust Policy, which you can find linked from the LF and project websites. The policy is important where multiple companies, including potential industry competitors, are participating in meetings. Please review and if you have any questions, please contact your company legal counsel. Members of the LF may contact Andrew Updegrove at the firm Gesmer Updegrove LLP, which provides legal counsel to the LF.

  • Antitrust Policy

• Roll Call

• Check Action Items & Topic Requests

• General Topics

  • Review of LFN Documentation @Casey Cain 

  • AI Taskforce follow-up @Ranny Haiby 

  • Edge Use Cases @Lisa Caywood 

  • CNF initiatives alignment and upcoming workshop at KubeCon NA  @Ranny Haiby 

• Any Other Topics:  

  LFN has a quality goal of elevating projects by delivering impeccable code with a focus on feature accuracy, fortified by state-of-the-art security tools in our development pipeline, and a commitment to swiftly address and resolve vulnerabilities in every release.

  
  
  

  Empowering LFN projects to excel, our goal is to deliver impeccable code, emphasizing both feature accuracy and robust security. Through the integration of cutting-edge tools like static application security testing (SAST), software composition analysis (SCA), and dynamic application security testing (DAST), we are dedicated to fortifying our development pipeline. Our commitment extends to prioritizing the swift resolution of security vulnerabilities with each release, ensuring a resilient foundation for innovation and reliability.”

  
  
  

  We can also come up with goal slogan that resonates and reminds LFN members of what needs to be done.  A short sentence or few words from goal statement.  Zero known CVE or 0 CVE

Action items

Minutes

Documentation Review @Casey Cain 

• Rewrite of documentation to make it more precise

• Step by step guide added for joining LFN

• Tool and services section not many changes but lives in a section of it's own

• Project proposals page change, project template added with instructions on how to complete

• OIpen discussion

  • D. Thaler - Need clarity on guidelines and what's mandatory  

  • Guidelines has recommendations where the criteria should have better alignment with the OpenSSF badging text will be helpful 

  • @Amy Zwarico I think it it would be great if we had better alignment with OpenSSF.  Should we make it a recommendation to have a passing badge?
    
    

    • There was a question about if current Graduated project would be grandfathered in.

      • There was some disscussion about the incentives to reach a Graduated project

      • There was also some concerns raissd about resources aviable to complete the OpenSSF badging

      • @Amy Zwarico then we shouldn't move them to Graduated.  
        
        

        • Amy also noted the concerns of secure networks and requirements of some governments. 

      • @Robert Varga spoke about the differences between ONAP and ODL that make it a challenge for ODL to complete the badging.

        • After discussion, @Robert Varga will provide some examples on the LFN Security Forum wiki.

AI Taskforce Followup @Ranny Haiby 

• Comments

Edge Use Cases @Lisa Caywood 

• @Olaf Renner spoke about the need for the LFN to align to develop Edge Use cases.

  • @Robert Varga What use cases are we meeting?
    
    

    • Edge applications

    • Edge services

CNF initiatives alignment and upcoming workshop at KubeCon NA @Ranny Haiby 

• @Ranny Haiby  spoke about a Workshop will be at KubeCon NA.