Date: Thu, 18 Apr 2024 22:30:33 +0100 From: Lexi Winter <lexi@le-fay.org> To: questions@freebsd.org Cc: core@freebsd.org Subject: why does FreeBSD only offer trustworthiness and transparency to people who donate money? Message-ID: <ZiGQ-RSQAsrEET5x@ilythia.eden.le-fay.org>
next in thread | raw e-mail | index | archive | help
--cs61EXLVr1GOXnOB Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable so today i came across this press release: https://freebsdfoundation.org/blog/freebsd-foundation-delivers-v1-of-freebs= d-ssdf-attestation-to-support-cybersecurity-compliance/ "FreeBSD Foundation Delivers V1 of FreeBSD SSDF Attestation to Support Cybersecurity Compliance" this is about some new thing called "SSDF Attestation" which is now available to people who give money to the FreeBSD Foundation. reading the PR, i learned: > The SSDF Attestation continues the FreeBSD community=E2=80=99s longstandi= ng > commitment to security by providing transparency and trustworthiness > in its software development environment. This move aligns with the US > federal government=E2=80=99s recent initiative to bolster software securi= ty. i would like to know exactly what "transparency" and "trushworthiness" is being provided to Foundation donors which is not provided to the rest of us. can anyone summarise exactly what this "SSDF" includes that is being witheld from normal users like me? cc: core@ since i assume core was somehow involved in this. --cs61EXLVr1GOXnOB Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQGzBAABCAAdFiEEuwt6MaPcv/+Mo+ftDHqbqZ41x5kFAmYhkPYACgkQDHqbqZ41 x5loQgv9HTIJFJzXi5oLkf+LsU0Ymmt/LPk26Zbq+bXrxXy8qAANSaukGanh3oc7 CDECJ/gPabJ4VQxnTFqYFOGYwwyRlDPAgZ4fan4k7GqKVNNvateWLyG+CjwSWg2R nR5917rP5STSyVKn5LbUn+3YGRRVFVEWDN7i4qIQpzYUBUIeUMv4/5WbSdBMw7df Y3qvBUTB/oRVqC0Gie896FCMH5pGLBFAnxXdvc2DZyzY0SCchvf1LaG2K9f9/Omw PaqaI5pcm1xwzZBfrhmLwKAFOL1BMcJn+R+G5exKUjIUxJbp+OJHKensBBN7St8c MLUw6NOaLS4wu6rGUelIhDnEaJaaLB6Sc9KMK+UgGlWMgxXgyQnLKkQnhMfPf9AL Vm1Rlmys9FkfU3ehAHJx2D1aFkOY4d0ZQta9HXGOg3ZkhMf+SYOmJAM1zQjk2Pyo D9ZN33d9XzznFbSJSxjhgzQmBCpgY0Sl2Rw5xVRYpyLUxEMJ1+TQSijZ99uMyujA pkK6XXLZ =ZxlR -----END PGP SIGNATURE----- --cs61EXLVr1GOXnOB--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ZiGQ-RSQAsrEET5x>