OASIS Static Analysis Results Interchange Format (SARIF) TC

Raw chat text from today's meeting

  • 1.  Raw chat text from today's meeting

    Posted 08-01-2018 17:54
    anonymous morphed into Luke Please change your name from 'anonymous' using the Settings button anonymous morphed into [Co-Chair] David Keaton anonymous morphed into Katrina O`Neil [Co-Chair] David Keaton: 4 voting members so far (7 needed for quorum) [Co-Chair] David Keaton: 6 voting members so far (7 needed for quorum) [Co-Chair] David Keaton: We have quorum. Luke morphed into Luke Cartey [Co-Chair] David Keaton: Agenda: [Co-Chair] David Keaton: Time 09:30-11:00 PDT 16:30-18:00 UTC Meeting Chat Location http://webconf.soaphub.org/conf/room/sarif Meeting Audio https://meet.lync.com/microsoft/mikefan/K8T265ZT 1. Opening Activities 1.1 Opening comments (Co-Chair Keaton) 1.2 Introduction of participants/roll call (Co-Chair Cartey) 1.3 Procedures for this meeting (Co-Chair Keaton) 1.4 Approval of agenda (Co-Chair Keaton) 1.5 Approval of previous minutes [Minutes of 2018-06-06 Meeting#19] (Co-Chair Keaton) 1.6 Review of action items and resolutions (Secretary Hagen) 1.7 Identification of SARIF TC voting members (Co-Chair Cartey) 1.7.1 Prospective members attending their first meeting 1.7.2 Members attaining voting rights at the end of this meeting 1.7.3 Members losing voting rights if they have not joined this meeting by the time it ends 1.7.4 Members who previously lost voting rights who are attending this meeting 1.7.5 Members who have declared a leave of absence 2. Timeline Status 2.1 Note where we are on the schedule [SARIF TC Timeline] (Co-Chair Keaton) - We have completed our first Committee Specification Draft (CSD) and its public review period 3. Future Meetings 3.1 Future meeting schedule (Co-Chair Keaton) Proposed teleconferences (Wednesdays at 09:30 PDT / 16:30 UTC for two hours) August 15 August 29 September 12 September 26 October 10 October 24 4. Document Progress (Co-Editors Golding and Fanning) 4.1 Editors' report 4.2 Triage of CSD comments raised on the public e-mail list We need to break this comment into individual issues and sort them into categories. 1. Editorial 2. Technical, but can be drafted without discussion 3. Technical, and needs further discussion 4.2.1 Comment from Jon Giffin [SARIF public comment] 4.3 Triage of CSD comments raised on the TC e-mail list N/A 4.4 Triage of CSD comments raised on github 4.4.1 correlationGuid property on run object should be on result object [#196] 4.4.2 Snippet, lineSnippet and multilineSnippet [#197] 4.4.3 Support for incremental scan results [#198] 4.4.4 Random-access readable format [#199] 4.4.5 3.11.18: require everything to be UTF-8 [#200] 4.4.6 Make region kind more explicit [#201] 4.4.7 Restore threadFlowLocation.kind [#202] 4.4.8 threadFlowLocation.step should be all or nothing [#203] 4.4.9 Clarify region examples [#204] 4.4.10 Suggestion: expand text in 3.22.2 examples to describe complete text associated with regions [#205] 4.5 Any other document items that need to be discussed 5. Other Business 6. Resolutions and Decisions reached (by 10 minutes prior to scheduled meeting end) 6.1 End debate of other issues by 10 minutes prior to scheduled meeting end and follow the agenda from this point (Co-Chair Keaton) 6.2 Review of Decisions Reached (Secretary Hagen) 6.3 Review of Action Items (Secretary Hagen) 7. Next Meeting Proposed: August 15, 2018 / 09:30-11:30 PDT / 16:30-18:30 UTC 8. Adjournment anonymous morphed into Nick Mansurov anonymous morphed into Jordyn Puryear [Co-Chair] David Keaton: 1.4 Approval of agenda [Co-Chair] David Keaton: APPROVED [Co-Chair] David Keaton: 1.5 Approval of previous minutes [Co-Chair] David Keaton: https://www.oasis-open.org/apps/org/workgroup/sarif/download.php/63250/sarif-minutes-20180606-meeting-19.html [Co-Chair] David Keaton: APPROVED [Co-Chair] David Keaton: 1.7 Identification of SARIF TC voting members [Co-Chair] David Keaton: Paul Brookes needs to attend today to retain voting rights. [Co-Chair] David Keaton: 3.1 Future meeting schedule [Co-Chair] David Keaton: Proposed meeting dates approved. Luke Cartey: https://www.oasis-open.org/apps/org/workgroup/sarif/download.php/63629/sarif_public_comment_20180724.pdf [Co-Chair] David Keaton: 4.2 Triage of CSD comments raised on the public e-mail list Michael C. Fanning: Issues deriving from public feedback Michael C. Fanning: 1) editorial change only, avoid JSON term in definitions Michael C. Fanning: 2) technical issue for discussion, address canonicalization of links in greater depth Michael C. Fanning: 3) separate from OM from format and format details (editorial only) Michael C. Fanning: 4) provide an ability to refer to all optional tables as URIs, technical issue with discussion Michael C. Fanning: 5) no discussion, open a work item to author a working proof point [Co-Chair] David Keaton: APPROVED as our plan of action to address the public comment. [Co-Chair] David Keaton: Noted that we should reply to the sender thanking him for his contribution and letting him know that we are working on it. [Co-Chair] David Keaton: 4.4 Triage of CSD comments raised on github [Co-Chair] David Keaton: 4.4.1 correlationGuid property on run object should be on result object [#196] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/196 [Co-Chair] David Keaton: Technical issue, can be addressed without further discussion. [Co-Chair] David Keaton: 4.4.2 Snippet, lineSnippet and multilineSnippet [#197] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/197 anonymous morphed into NIck Mansurov NIck Mansurov morphed into Nick Mansurov [Co-Chair] David Keaton: No technical or design change required, but we can editorially examine the spec text for clarity. [Co-Chair] David Keaton: 4.4.3 Support for incremental scan results [#198] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/198 [Co-Chair] David Keaton: Technical, requires further discussion. [Co-Chair] David Keaton: 4.4.4 Random-access readable format [#199] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/199 [Co-Chair] David Keaton: Editorial. anonymous morphed into Nick Mansurov [Co-Chair] David Keaton: 4.4.5 3.11.18: require everything to be UTF-8 [#200] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/200 [Co-Chair] David Keaton: Editorial -- will examine the text to make sure there is a strong suggestion to provide encoding information always. [Co-Chair] David Keaton: 4.4.6 Make region kind more explicit [#201] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/201 anonymous morphed into Nick Mansurov [Co-Chair] David Keaton: Technical, can be addressed without further discussion. [Co-Chair] David Keaton: 4.4.7 Restore threadFlowLocation.kind [#202] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/202 [Co-Chair] David Keaton: Technical, requires further discussion. [Co-Chair] David Keaton: Jim would like to see a draft to help launch the discussion. [Co-Chair] David Keaton: 4.4.8 threadFlowLocation.step should be all or nothing [#203] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/203 [Co-Chair] David Keaton: Editorial. [Co-Chair] David Keaton: 4.4.9 Clarify region examples [#204] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/204 [Co-Chair] David Keaton: Editorial. [Co-Chair] David Keaton: 4.4.10 Suggestion: expand text in 3.22.2 examples to describe complete text associated with regions [#205] [Co-Chair] David Keaton: https://github.com/oasis-tcs/sarif-spec/issues/205 [Co-Chair] David Keaton: Editorial. [Co-Chair] David Keaton: Change 4.4.1 #196 to Editorial. [Co-Chair] David Keaton: APPROVED [Co-Chair] David Keaton: ADJOURNED