Skip to content

ossf/wg-orbit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

24 Commits
CHARTER.md
CHARTER.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

ORBIT: Open Resources for Baselines, Interoperability, and Tooling

The ORBIT Working Group (WG) is a Sandbox-level group within the Open Source Security Foundation (OpenSSF).

ORBIT exists to develop and maintain interoperable resources for the identification and presentation of security-relevant data. It provides a home for collaborative activities, best practice definitions, documentation, testing, integration, and other artifacts supporting the mission.

---
title: What is in ORBIT?
---
flowchart TD
    subgraph Orbit
    Baseline(Security Baseline)
    click Baseline "https://github.com/ossf/security-baseline"
    Gemara(Gemara)
    click Gemara "https://github.com/ossf/gemara"
    SecurityInsights(Security Insights)
    click SecurityInsights "https://github.com/ossf/security-insights"
    Minder(Minder)
    click Minder "https://github.com/mindersec/minder"
    Minder -->|Evaluates| minder-rules(minder-rules)
    click minder-rules "https://github.com/mindersec/minder-rules-and-profiles"
    minder-rules -->|Expresses| Baseline
    minder-rules -->|Reads| SecurityInsights
    Assessments(Security Assessments)
    click Assessments "https://github.com/ossf/security-assessments"
    Gemara -->|Expresses| Baseline
    pvtr(pvtr-github-repo) -->|Uses | Gemara
    click pvtr "https://github.com/revanite-io/pvtr-github-repo"
    pvtr -->|Consumes | SecurityInsights
    pvtr -->|Produces | AssessmentResults(Gemara Layer 4)
    click AssessmentResults "https://github.com/ossf/gemara?tab=readme-ov-file#layer-4-evaluation"
    Assessments -->|Uses | Gemara
    end
    LFXInsights[LFX Insights
    Security & Best Practices] -->|Consumes |AssessmentResults
    click LFXInsights "https://insights.linuxfoundation.org/"
Loading

The group is open to participation from anyone who abides by the Contributor Covenant Code of Conduct 2.0 (OpenSSF member or not).

Review the WG's mission and scope for more details.

Quick Start

  1. Star this repository to stay updated
  2. Review the active technical initiatives to see where you can contribute
  3. Join Slack and introduce yourself
  4. Join a working group meeting

Governance

The WG is governed by a Technical Steering Committee (TSC) composed of the leads from the active technical initiatives.

Review the WG charter for information about operational policies, trademarks, and intellectual property licensing.

About

ORBIT: Open Resources for Baselines, Interoperability, and Tooling

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

19 stars

Watchers

5 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 8