Join the conversation

Meet the Maintainers

  • Jenn Power, Red Hat (@jpower432)

  • Eddie Knight, Sonatype (@eddie-knight)

  • Travis Truman, CVS Health (@trumant)

Projects and Working Groups

We are always looking for additional perspective on the Gemara project. Community members and maintainers are involved in several projects, working groups, and initiatives.

  • FINOS Common Cloud Controls Catalog: FINOS CCC is a collaborative project aiming to develop a unified set of cybersecurity, resiliency, and compliance controls for common services across the major cloud service providers.
  • OpenSSF ORBIT Working Group: The development and maintenance of interoperable resource for identification and presentation of security-relevant data. Gemara falls under the ORBIT WG.
  • Open Source Project Security Baseline: OSPS Baseline is an effort to establish controls that help project maintainers understand security best practices and expectations.