There are a number of items of policy that we need to discuss and formalize as part of having a well-structured platform. This is an incomplete list since things are still early-stage, please add new items as needed (as well as their WJ
Jira issues or other documents, if any).
General governance, structure, and accountability – https://gist.github.com/ammongit/52b3588073257b6ff213de40bdc11e67
Unmasking qualifications, restrictions, policy –
Jira Legacy server System JIRA serverId 701c9f39-81b8-3d5d-bdd3-5ec41aacbd37 key WJ-353 Disclosure of security incidents, and data loss/breaches.
Post-mortems for platform failures, outages, or other infrastructural issues.
Handling of sensitive bug reports or responsible vulnerability disclosures – https://github.com/scpwiki/wikijump/blob/develop/SECURITY.md