Baseline Pilot Rollout to OpenSSF Projects

[eddie-knight]

Several project maintainers have committed to having their projects adopting the security baseline. The details of the projects can be found here

As a pilot rollout, we will aim to get these projects passing on Level 1:

• bomctl
• GUAC
• OpenVEX
• Protobom
• RSTUF
• Scorecard
• Minder

[staceypotter]

Hey @eddie-knight can we add Minder to this list as well please and thank you?

[eddie-knight]

Done!

[SecurityCRob]

What is the status of our pilot projects? Do we have anything documented anywhere? Now that we're further down the road, should we perhaps reach out to them as a group and do a checkup?