Re: [open-regulatory-compliance] ORC Charter

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [open-regulatory-compliance] ORC Charter

From: Tobie Langel <tobie@xxxxxxxxxxxxxx>
Date: Sat, 14 Dec 2024 16:03:49 +0100
Delivered-to: open-regulatory-compliance@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/open-regulatory-compliance/>
List-help: <mailto:open-regulatory-compliance-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/open-regulatory-compliance>, <mailto:open-regulatory-compliance-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/open-regulatory-compliance>, <mailto:open-regulatory-compliance-request@eclipse.org?subject=unsubscribe>

Hi Scott,

Thanks for taking the time to email us.

The omission of committer members is an accident that was recently noticed and that is currently being fixed.

The replacement of Steward Members by Foundation Members was done on purpose to avoid creating the impression of a 1:1 mapping between member classes and the description of certain roles in the Cyber Resilience Act. "Open Source Steward" is a role that both a foundation and a forprofit can take on. It's even possible for an organization to be both the manufacturer of a project and the steward of another. That would be super confusing for member classes.

Hope this helps address the concerns you've raised. Please let us know if it doesn't.

Thanks,

--tobie

---
Tobie Langel
Senior Technical Lead, ORC WG
Principal, UnlockOpen

On Fri, Dec 13, 2024 at 11:42 PM Scott Lewis via open-regulatory-compliance <open-regulatory-compliance@xxxxxxxxxxx> wrote:

Greetings,

I recently became aware of the ORC, joined the mailing list, and saw that the ORC charter was published recently [1][2].

As a 20 year+ committer member, I was shocked to see no inclusion of committer members in the 'Classes of Membership' section of the charter.

This seems like a clear oversight to me, at least partially because the CRA now includes important new language of 'project-level stewards' [3] that will in many/most cases be doing the actual work of security maintenance and innovation for the Eclipse IDE platform [4] as well as many other Eclipse projects.

It is also surprising to me that the charter makes no mention of 'stewards' (a key new part of CRA it appears to me), *except* this one:

v0.3 rename Steward member to Foundation member - 2 June 2024

Scott

ECF Project Lead

[1] https://www.eclipse.org/lists/open-regulatory-compliance/msg00365.html

[2] https://www.eclipse.org/org/workinggroups/open-regulatory-compliance-charter.php

[3] https://about.gitlab.com/blog/2016/01/11/being-a-good-open-source-steward/
[4] https://gitlab.eclipse.org/eclipse-wg/ide-wg/ide-wg-dev-funded-efforts/ide-wg-dev-funded-program-planning-council-top-issues/-/issues/37

_______________________________________________
open-regulatory-compliance mailing list
open-regulatory-compliance@xxxxxxxxxxx
To unsubscribe from this list, visit https://accounts.eclipse.org

Follow-Ups:
- Re: [open-regulatory-compliance] ORC Charter
  - From: Scott Lewis
- Re: [open-regulatory-compliance] ORC Charter
  - From: Scott Lewis

References:
- [open-regulatory-compliance] ORC Charter
  - From: Scott Lewis

Prev by Date: [open-regulatory-compliance] ORC Charter
Next by Date: Re: [open-regulatory-compliance] ORC Charter
Previous by thread: [open-regulatory-compliance] ORC Charter
Next by thread: Re: [open-regulatory-compliance] ORC Charter
Index(es):
- Date
- Thread

Breadcrumbs