{"id":28487956,"url":"https://github.com/slsa-framework/slsa-proposals","last_synced_at":"2026-02-26T02:39:57.401Z","repository":{"id":37857082,"uuid":"455685885","full_name":"slsa-framework/slsa-proposals","owner":"slsa-framework","description":"SLSA Proposals","archived":false,"fork":false,"pushed_at":"2024-01-29T17:15:53.000Z","size":593,"stargazers_count":10,"open_issues_count":0,"forks_count":11,"subscribers_count":22,"default_branch":"main","last_synced_at":"2025-11-09T16:18:16.816Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":false,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/slsa-framework.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2022-02-04T20:23:16.000Z","updated_at":"2025-06-06T20:52:35.000Z","dependencies_parsed_at":"2024-01-29T18:57:04.193Z","dependency_job_id":"1b2c7cdc-1b9d-42c0-925e-fe4e6eb1d063","html_url":"https://github.com/slsa-framework/slsa-proposals","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/slsa-framework/slsa-proposals","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slsa-framework%2Fslsa-proposals","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slsa-framework%2Fslsa-proposals/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slsa-framework%2Fslsa-proposals/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slsa-framework%2Fslsa-proposals/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/slsa-framework","download_url":"https://codeload.github.com/slsa-framework/slsa-proposals/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/slsa-framework%2Fslsa-proposals/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29848634,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-25T22:37:40.667Z","status":"online","status_checked_at":"2026-02-26T02:00:06.774Z","response_time":89,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-06-08T05:08:28.660Z","updated_at":"2026-02-26T02:39:57.396Z","avatar_url":"https://github.com/slsa-framework.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# SLSA Proposal Documents\n\nThis repository contains \"proposal documents\" that supplement larger changes to\n[SLSA].\n\n**Proposals represent a snapshot in time.** They are intended to explain a\nproposed change and its rationale. They are **not** intended to serve as\nlong-term documentation once the change is implemented. Long-term documentation\nshould instead live in the [main SLSA repo].\n\n## Proposal index\n\nNumber                 | Title                                          | [Status]\n---------------------- | -----------------------------------------------| -----------\n[0001](0001/README.md) | Creation of proposal process                   | IMPLEMENTED\n[0002](0002/README.md) | Project roadmap, May 2022                      | ACCEPTED\n[0003](0003/README.md) | SLSA v1.0 proposal                             | IMPLEMENTED\n[0004](0004/README.md) | Policy Architecture for Npm Package Provenance | DRAFT\n[0005](0005/README.md) | Conformance Program proposal                   | ABANDONED\n[0006](0006/README.md) | Restructure the Versioning System for SLSA     | ACCEPTED\n[0007](0007/README.md) | Steering Commitee application, terms, and role | DRAFT\n[0008](0008/README.md) | Common CI/CD buildType                         | DRAFT\n\n## How to create a proposal document\n\nSee [CONTRIBUTING] for a description of the process. Proposal documents are not\nneeded for all changes.\n\n1.  Find or create a relevant [GitHub Issue] in the main SLSA repo to discuss\n    this idea.\n2.  Fork this repository and create a PR containing the new document:\n    *   Create `####/README.md` using [0001/README.md](0001/README.md) as a\n        template:\n        *   `####` is the proposal number; use the next available integer.\n        *   Update metadata at the top:\n            *   Page title: Proposal number and title\n            *   Proposer: Full name with link to GitHub username, plus email\n            *   GitHub Issue: Link to GitHub Issue(s) that this proposal\n                addresses\n            *   Status: `DRAFT`\n            *   Implementation: Point to any implementations that are ready, or\n                `(none)` if none are available yet.\n        *   Fill out the rest of the document as appropriate. We recommend\n            following the same document structure unless you have a reason to\n            deviate. Delete or comment-out unused sections.\n    *   Update the [proposal index] with the new proposal.\n    *   Send a pull request to submit the proposal. You may gather and\n        incorporate initial feedback in the PR, but prefer to submit it once\n        activity subsides rather than having a long-lived PR.\n3.  As needed, iterate on the proposal with more PRs.\n4.  Once agreement is reached on the Issue, send a PR to update the [status].\n\n## Meaning of status codes\n\n*   **DRAFT:** Still being refined and/or undergoing review. All proposals start\n    in this state.\n*   **ACCEPTED:** Accepted as the plan of record but not yet implemented.\n*   **IMPLEMENTED:** Implemented and final. The doc should be updated to point\n    to the implementation PRs in the Implementation metadata field.\n*   **REJECTED:** Will not be implemented. The doc should explain the decision.\n*   **ABANDONED:** Proposer has stopped work on the proposal, without an\n    explicit approval or rejection decision. The doc should explain why it was\n    abandoned.\n\n[CONTRIBUTING]: https://github.com/slsa-framework/slsa/blob/main/CONTRIBUTING.md\n[SLSA]: https://slsa.dev\n[main SLSA repo]: https://github.com/slsa-framework/slsa\n[GitHub Issue]: https://github.com/slsa-framework/slsa/issues\n[status]: #meaning-of-status-codes\n[proposal index]: #proposal-index\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fslsa-framework%2Fslsa-proposals","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fslsa-framework%2Fslsa-proposals","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fslsa-framework%2Fslsa-proposals/lists"}