Agenda for September 27, 2017
MEETING OF OASIS SARIF TC


Time

09:30-11:30 PDT
16:30-18:30 UTC

Meeting Chat Location

http://webconf.soaphub.org/conf/room/sarif

Meeting Audio

Skype for Business meeting link:
https://meet.lync.com/microsoft/mikefan/KBJF1STH

1. Opening Activities

1.1 Opening comments (Co-Chair Keaton)
1.2 Introduction of participants/roll call (Co-Chair Cartey)
1.3 Procedures for this meeting (Co-Chair Keaton)
1.4 Approval of agenda (Co-Chair Keaton)
1.5 Approval of previous minutes [Minutes of 2017-09-20 Meeting#2] (Co-Chair Keaton)
1.6 Review of action items and resolutions (Secretary Hagen)
1.7 Identification of SARIF TC voting members (Co-Chair Cartey)
1.7.1 Prospective members attending their first meeting
1.7.2 Members attaining voting rights at the end of this meeting
1.7.3 Members losing voting rights if they have not joined this meeting by the time it ends
1.7.4 Members who previously lost voting rights who are attending this meeting
1.7.5 Members who have declared a leave of absence

2. Future Meetings

2.1 Discuss future meeting schedule [Doodle poll] (Co-Chair Keaton)
The Doodle poll went out for various teleconference starting times on the following dates.

3. Adopt Driving Principles

3.1 Discuss what principles will guide the work (Co-Editor Fanning)
Discussion began at the previous meeting with the following points. Co-Editor Fanning will send an update to the list including last week's discussion.
  1. SARIF is primarily designed to advance the industry by providing the best direct production format possible. Aggregating results from other formats is another important scenario but secondary to direct production.
  2. SARIF defines a range of data that shall be expressed in order to best support static analysis tooling. Our specification describes a JSON implementation of this standard. It should be possible to define other implementations (such as XML).
  3. SARIF is designed for static analysis tools and any concept that generally applies for this scenario shall be considered for the format. SARIF can clearly be used for many dynamic analysis scenarios and we should consider augmenting the format for this class of tooling, but not in cases where what is proposed is applicable to the dynamic analysis domain only (excluding static).
If a motion is made to adopt the principles as amended, consider the motion.

4. Begin document review (time permitting)

4.1 Start reviewing the working draft from the beginning, collecting questions and comments (Co-Editor Fanning)

5. Other Business

6. Resolutions and Decisions reached (by 10 minutes prior to scheduled meeting end)

6.1 End debate of other issues by 10 minutes prior to scheduled meeting end and follow the agenda from this point (Co-Chair Keaton)
6.2 Review of Decisions Reached (Secretary Hagen)
6.3 Review of Action Items (Secretary Hagen)

7. Next Meeting

8. Adjournment