Skip to content

Latest commit

 

History

History
280 lines (155 loc) · 11.1 KB

OpenSSF Content Policy.md

File metadata and controls

280 lines (155 loc) · 11.1 KB
Raw

OpenSSF Content Policy

The OpenSSF Content Policy lays out the purpose, process, and guidelines for official OpenSSF content channels including the blog, news room, social media, website, mailing list, and project websites and social media channels.

OpenSSF Blog

Purpose

The purpose of the OpenSSF Blog is to provide informative and educational content about open source software security to the wider open source community, demonstrate thought leadership, share important milestones, and highlight the value of getting involved in the work of OpenSSF.

  • Inform about the OpenSSF and its work
  • Serve as central location for project news
  • Highlight achievements and milestones
  • Drive traffic to the site and ways to get involved
  • Demonstrate thought leadership
  • Generate interest in improving open source software (OSS) security

Content Calendar

  • Content calendar
  • For OpenSSF staff, Marketing Committee (MC), Technical Advisory Council (TAC), Governing Board (GB) to collaborate and help get a sense for what is in the pipeline and to source new ideas

Guidelines

We aim to keep OpenSSF blog posts short and focused on what’s newsworthy, what’s cool, and what’s important to our community. We encourage links to source material for longer descriptions and deeper dives. Content should be presented in a conversational way that provides insight from the author’s expertise and perspective.

  • Topic Area: Stick to topics directly relevant to open source software security
  • Tone: Friendly, yet authoritative with a preference for first person voice
  • Word Count: average of 300 – 900 words
  • Style: Focus on readability. Write for the non-expert. Spell out acronyms upon first use. Break content into easily digestible parts with headings.
  • Attribution: Identify author(s) and affiliations. When possible, try to have authors from multiple organizations to demonstrate breadth of support and collaboration
  • Intent: No sales pitches please. While it is ok to highlight the work of an individual company, it should remain balanced and not be at the expense of others. Blogs exclusively about a for-profit-company’s products or services will not be accepted
  • Images: Relevant graphics like charts, graphs, and photos are encouraged

Submission Process

If you’d like to suggest a topic area or volunteer to write a post, send an email to [email protected] with your name, topic, and few lines describing the post you’d like to write. We’ll let you know if we think your topic would be a good fit for our blog. You may use the template below to get started.

Topic Proposal Template:

Topic: Objective: Headline: Author(s) (Name, Title, Organization): 1-3 Key Points: Call to Action: Value to Community: Target Publish Date: Graphic(s): Next Steps:

Once the topic is approved, draft and submit the blog post.

Approval Process

  • The review process for blog posts is generally 2-3 weeks using a shared Google document to capture inputs and make suggestions.
  • For technical statements on behalf of the organization, TAC and relevant WG leads should be notified; allowing at least 24-48 hours for feedback.
  • For coordination on major announcements, especially those that reference member organizations, MC should be aware.
  • Once the author has approved the final post, OpenSSF Marketing will schedule and publish the blog; provide author with the link; share with members and on OpenSSF social media channels. Don’t forget to share with your own networks too!

WGs should follow process established above, Associated Projects should either create a similar process themselves or follow the same process established above

Reposts of OpenSSF Blogs Elsewhere

  • In general, reputable sources are allowed to repost as long as credit is clearly established and it links back to the original post
  • Individual requests can be handled on a case-by-case basis - contact Jennifer Bly
  • LF APAC Team has an open invitation to repost content and translate material following same guidelines above and reviewing translations for accuracy

OpenSSF News Room

Purpose

The purpose of the OpenSSF News Room is to house official press releases issued by the organization. Press releases are to provide notification about major announcements, releases, and milestones to the public and media sources.

  • Share newsworthy information
  • Serve as the home base for media pitches
  • Convey information about:
    • Major announcements
    • Momentum releases on a regular quarterly basis
    • New Premier Members - joint with new premier members

Process

  1. Develop content internally or in tandem with members in cases of joint releases
  2. Confirm any quotes/outside contributions with the appropriate party
  3. Enlist support from PR firm and Marketing Committee as needed
  4. Notify Governing Board and TAC at least 24 hrs in advance
  5. Pitch to press under embargo until release date and time
  6. Post press release to OpenSSF site, Linux Foundation site, and release to the wire
  7. Share on social media

Guidelines

  • Follow the standard press release format including: title, city, date, OpenSSF and Linux Foundation boilerplates, and media contact information
  • Tone should be straightforward and tell a story that press can pick up on
  • Streamline content and keep brief as possible
  • Include quotes from spokespeople
  • All major releases from OpenSSF projects should be released from the OpenSSF itself

OpenSSF Social Media

Purpose

The purpose of OpenSSF Social Media accounts are to provide regular and timely updates, showcase the work of the OpenSSF, increase visibility of OpenSSF initiatives, and engage with the community on topics related to OSS security.

  • Increase visibility of OpenSSF and key messages
  • Drive participation in OpenSSF activities and events
  • Build reputation as go-to-resource for all things open source security
  • Amplify reach of the foundation and partners/members/community

Process

  1. Discovery and content creation
  2. Suggestions
    1. Anyone may tag OpenSSF in respective channels and doing so is encouraged
    2. Marketing Committee members are encouraged to provide content suggestions during meetings
    3. Share in OpenSSF Slack #outreach channel, open to everyone and designed to be a place for people to share in real time social media posts, events, and news content for sharing with one another

Guidelines

OpenSSF Website

Purpose

The purpose of the OpenSSF website is to be the official source of information about the OpenSSF. It is designed to communicate information about the foundation, its working groups and projects, members, leadership, how to get involved, how to access training, how to become a member, the blog, publications and other important details. It is intended to represent the brand and make it easy for anyone who wants to learn more to get a firm understanding of the OpenSSF and efforts to secure the open source software ecosystem.

  • Be authoritative source for OpenSSF content
  • Establish corporate identity
  • Provide resources for members, potential members, community, press, general public, etc.
  • Highlight opportunities to get involved

Process

  1. Managed by OpenSSF staff
  2. Content suggestions should be forwarded to OpenSSF Marketing
  3. Reports related to website traffic and improvements are provided to the Marketing Committee each month

Guidelines

  • Style is business-oriented
  • Consider ease of navigation
  • Aim for consistency
  • Provide value
  • Include call to actions as appropriate
  • Help visitors accomplish their goal for coming to the website

OpenSSF Mailing List

Purpose

The purpose of the OpenSSF Mailing List is to provide informative and educational content about open source software security and the OpenSSF to the community. Via the mailing list, OpenSSF delivers announcements, event info, and the community news to the inbox of subscribers with the goal of driving increased participation and awareness of the latest OpenSSF news.

  • To communicate regularly with community
  • Send monthly newsletters and invites to upcoming events
  • Provide value
  • Inform about upcoming opportunities
  • Increase participation

Process

  1. Subscribe to the mailing list at: https://openssf.org/sign-up/
  2. We’ll never spam you and you may unsubscribe from the mailing list at any time
  3. By submitting signing up, subscribers acknowledge their information is subject to The Linux Foundation's Privacy Policy

Guidelines

  • Keep emails brief and to the point
  • Ensure quality, including working links
  • Include main purpose and call to action
  • Be mindful of the volume of email people receive, so limit usage to important and timely communication only
  • Content suggestions are welcome

Project Websites and Social Media

Purpose

A few OpenSSF projects have their own hosted websites and social media accounts separate from the main OpenSSF channels. These are intended to be the official source of information about those projects and to communicate with the community.

  • Authoritative source for certain Associated Project content
  • Establish unique identity
  • Serve community needs

Process

  • Managed individually
  • Consult with OpenSSF on best practices and recommendations
  • Collaborate with OpenSSF Marketing to identify and take advantage of cross-sharing opportunities
  • Notify OpenSSF on major updates/announcements/new content

Guidelines

  • Make clear connection to OpenSSF via indication on website header or footer and in social media profile descriptions
  • Uphold same guidelines as OpenSSF site and social media guidelines above
  • Collaborate with OpenSSF to sync on content and maximize reach