Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Create ELISA Policies and Guidelines #73

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

shuahkh
Copy link

@shuahkh shuahkh commented Mar 9, 2022

As per the discussion at the TSC meeting, adding the policies doc to the repo.

Signed-off-by: Shuah Khan [email protected]

As per the discussion at the TSC meeting, adding the policies doc to the repo.

Shuah Khan <[email protected]>
@shuahkh shuahkh closed this Mar 9, 2022
@shuahkh shuahkh reopened this Mar 9, 2022
@shuahkh
Copy link
Author

shuahkh commented Mar 9, 2022

DCO continues fail on this - not sure why.


**ELISA deliverables:**
- ELISA develops an example qualitative analysis for safety critical use-cases for the Linux kernel e.g: Automotive and Medical.
- ELISA provides resources for System integrators to apply and use to analyze qualitatively and quantitatively on their systems. For example, ELISA will analyze published CWEs to identify hazards for the two use-cases.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@shuahkh I believe this was partially taken from the technical charter and could also be found in a previous version of the gold deck. I propose to do rewording on the ELISA deliverables.

What about creating an issue to update this part of the documentation after we have merged this. Alternative could also be to put another commit on top of this PR to correct it.

Presentations and work in progress are not considered a publication until reviewed and added to one of the publication sites. All work in progress on github should contain licenses.

### Publication Licensing Policy
All ELISA documentation deliverables shall be released under CC-BY-4.0. All published documents shall carry the following licensing information.
Copy link

@pahmann pahmann Nov 4, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I have a concern here. If we say above that blogs count as documentation deliverable it will look strange to have the CC-BY-4.0 listed there. I believe for markdown however, this makes sense. There may be an exception if you have a documentation focused repository which include a LICENSE file.


References to documents that use this header:
- https://elisa.tech/wp-content/uploads/sites/75/2021/05/ELISA_Advancing-Open-Source-Safety-Critical-Systems_Whitepaper_050521.pdf
- https://github.com/elisa-tech/wg-medical-devices/commit/79290c454ab8f4f03560090843f84d13ed7b3360
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If I follow the link to medical I get a headline from github mentioning: "This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository." I guess we may have to change it to: elisa-tech/wg-medical-devices@e7eefff


If contributions are added to an existing tool, they are considered to be under the license associated with the existing project.

ELISA uses tools and references to develop example qualitative analysis for Automotive and Medical use-cases for the Linux kernel and provides resources for System integrators to use to analyze their systems.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Change proposal: "analysis for Automotive and Medical use-cases" could become "analysis for ELISA reference use-cases"

- Each repository must have a documented review policy and acceptance criteria for PRs, to provide guidance to contributors, maintainers and reviewers.
- All new inbound code contributions must also be accompanied by a Developer Certificate of Origin (http://developercertificate.org) sign-off in the source code system that is submitted through a TSC-approved contribution process which will bind the authorized contributor and, if not self-employed, their employer to the applicable license.

### Investigation on safety standards use in reference process
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this section the proper place for the document. We also kind of completed the reference process work, IIRC. Keeping it in is also not harming the content, so it may be an item for further discussion in a later stage.

@pahmann
Copy link

pahmann commented Nov 4, 2022

@shuahkh I am not sure, if you tried this already, but there is section within the wg-automotive describing the DCO issue.
https://github.com/elisa-tech/wg-automotive#workflow
https://github.com/elisa-tech/wg-automotive#signing-off-and-dco

But I am pretty sure you have most likely followed this, if I remember the discussion from March correctly and @reiterative was also pointing you to it.

I also added a few comments, which could result in an update of this PR. Maybe this on top resolves the failing DCO check.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants