This document describes the Open Source Security Foundation (OpenSSF) life cycle process for Technical Initiatives, inclusive of Working Groups, Projects, and Special Interest Groups (SIG).
The authority that governs this process is as follows:
The parent organizational structure grants governance to the downward in the organizational structure. In turn the receiving Working Group, Project, or SIG reports health, participation, outcomes, statuses, etc up the chain.
flowchart TD
A[Governing Board] <--> B[TAC]
B <--> C[Working Group]
B <--> E[Working Group]
C <--> D[Project]
B <--> F[Project]
B <--> G[Project]
E <--> H[Project]
E <--> I[SIG]
The process is designed to be flexible to enable a Project to move in and out of a Working Group as deemed appropriate by the TAC.
Working Groups and Projects have a different lifecycle as defined below: