Project news

Common Security Advisory Framework Version 2.0 approved as an OASIS Standard

The definitive reference for CSAF, a language to exchange Security Advisories in JSON, is now an OASIS Standard

OASIS is pleased to announce that the call for consent has closed [1] and, effective 18 November 2022, Common Security Advisory Framework Version 2.0 is an OASIS Standard. Project Administration will now undertake the final tasks of preparing and loading the standard.

The ballot was held under the OASIS call for consent procedure [2]. In the ballot, the CSAF received 22 affirmative consents and no objections.

Our congratulations to the members of the TC and to the community of implementers, developers and users who have brought the work successfully to this milestone

Additional information

[1] Ballot: