Updated Security Audit for Sigstore

[Amir Montazery]

Hi everyone! 

Thank you for letting me participate in the community meeting last night. I have created a shared document to start getting a better idea of what an updated audit will look like. I have included some of our preliminary thoughts, and welcome the group to chime in on top priorities and what would benefit the project most. 

See here: https://docs.google.com/document/d/1i5LykiEWBA1QVvKwqNhCKLEVQJGRBu6RemA_uCmi32I/

I am at the OpenSSF Community Day event in Amsterdam and will try to make it for the TSC meeting. But in case I can't make it please let me know if there are any questions, updates, or comments. 

Thank you in advance! 

Amir