The PSR-9 group has been working on a a spec for recommended security
practices, including a common format for distributing security
advisories (SAs). We've determined that the SA distribution part ought
to get split off to its own PSR.
Thus, we propose to fork that part off to what I believe would be called
PSR-10.
Since we've not had this situation come up before I'm not sure how much
discussion we need before I call an entrance vote for PSR-10; I am open
to opinions on whether I should just do it or not.
The proposed "Reduced scope" PSR-9 is here:
https://github.com/php-fig/fig-standards/pull/393
And the proposed "distribution" PSR[-10] is here:
https://github.com/php-fig/fig-standards/pull/473
Note that the second especially would just be an "idea" vote to admit as
a separate spec, so don't comment on the specifics at this time.
The working group for the split off PSR would be:
Editor: Lukas Smith
Coordinator: Larry Garfield
Sponsor: Korvin Szanto
(The same people as for PSR-9, but with the Coordinator and Sponsor
swapped to spread out the workload.)
I now open the floor for discussion, mainly of whether or not I should
just take it to an entrance vote immediately. :-)
--Larry Garfield