diff --git a/community/README.md b/community/README.md index 12556f808..c30b824e7 100644 --- a/community/README.md +++ b/community/README.md @@ -4,35 +4,32 @@ Welcome to the Community Directory of the CNCF TAG Security repository. This dir ## Directory Structure -**catalog/** - - Contains the catalog of supply chain compromises. +### Catalog +- Contains the catalog of supply chain compromises. + +### Publications +- Index of published papers, reports, whitepapers, and audio versions of publications. The source files are located in: + - **resources/** if they are overarching documents. + - **community/working-groups/** if they are owned by a working group. + - **assessments/** if they are assessment documents. + +### Working Groups +- **archive/policy/**: Contains archived Policy-as-Code assets. +- **automated-governance/**: Assets for the Automated Governance working group. +- **compliance/**: Assets for the Compliance working group. +- **controls/**: Assets for the Controls working group. +- **research/**: Assets related to the Research working group. +- **supply-chain-security/**: Resources and documents for the Supply Chain Security working group. +- **catalog/**: Contains the catalog of working group activities and documents. + +### Events +- Information about past and future community gatherings. + +### Community Resources +- **Design**: Colors and logos used in documents and presentations. +- **Overarching Publications**: Cloud Native Security Landscape, Provenance Implementation Guides, Security Fuzzing Handbook, Lexicon, White Paper, and Use Case Personas. +- **Project Resources/**: Contains various project-specific resources and templates. -**publications/** - - Index of published papers, reports, whitepapers, and audio versions of publications. The source files are located in: - - **resources/** if they are overarching documents. - - **community/working-groups/** if they are owned by a working group. - - **assessments/** if they are assessment documents. - -**working-groups/** - - - **archive/policy/**: Contains archived Policy-as-Code assets. - - **automated-governance/**: Assets for the Automated Governance working group. - - **compliance/**: Assets for the Compliance working group. - - **controls/**: Assets for the Controls working group. - - **research/**: Assets related to the Research working group. - - **supply-chain-security/**: Resources and documents for the Supply Chain Security working group. - - **catalog/**: Contains the catalog of working group activities and documents. - - **events/** - - - Information about past and future community gatherings. - -**Community Resources** - - - **Design**: Colors and logos used in documents and presentations. - - **Overarching Publications:**: `Cloud Native Security Landscape, Provenance Implementation Guides, Security Fuzzing Handbook, Lexicon, White Paper, and Use Case Personas. - - **Project Resources/**: Contains various project-specific resources and templates. - ## Contribution Guidelines We welcome contributions to this directory. Please follow the general contribution guidelines outlined in the root `CONTRIBUTING.md` file of this repository. Ensure that your contributions align with the purpose of each subdirectory and provide clear and useful information for community members.