Documents & Guides

Documents relevant to the CPAN Security Group.

Instructions and rules

• Incident Reporting instructions
• Pre-release Disclosure Agreement
• Charter ⚠️ DRAFT
• Standards of Conduct (TBD)

Guides

• CPAN Author’s guide ⚠️ DRAFT
• Risk assessment guide ⚠️ DRAFT
• Risk mitigation guide ⚠️ DRAFT

Background info

• Tech & legislation Reading list ⚠️ DRAFT
• Glossary of terms ⚠️ DRAFT
• Supply-chain SBOM roles and metadata overview ⚠️ DRAFT