From 12f38907f2987a29f5407e28f17cb377013497e5 Mon Sep 17 00:00:00 2001 From: rudd Date: Sun, 15 Jun 2025 17:01:02 -0700 Subject: [PATCH 1/8] Create npm continuity policy --- project-resources/npm-continuity-policy.md | 31 ++++++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 project-resources/npm-continuity-policy.md diff --git a/project-resources/npm-continuity-policy.md b/project-resources/npm-continuity-policy.md new file mode 100644 index 00000000..8f30afca --- /dev/null +++ b/project-resources/npm-continuity-policy.md @@ -0,0 +1,31 @@ +# OpenJS npm Continuity Policy + +## Summary + +This policy is intended to ensure that OpenJS npm Organizations remain accessible and manageable. + +It addresses the following use cases: + +* Managing projects and users when maintainers are inactive or unreachable +* [Deprecating packages](https://docs.npmjs.com/deprecating-and-undeprecating-packages-or-package-versions) when maintainers are no longer reachable +* Adding or removing npm Organization members in emergency situations + +# Continuity Options for Projects + +### Option 1: Add an OpenJS Continuity Account to your npm Organization(s) and/or Packages** + +If you select this option a new, dedicated OpenJS account will be created specifically for your Project. This account will be managed by the OpenJS Executive Director (Robin Ginn, [@rginn](https://github.com/rginn)). + +To initiate this process, please create an issue in the [Infrastructure repository](https://github.com/openjs-foundation/infrastructure/issues/new?template=IT-SUPPORT-REQUEST.yml). + +* If you use npm Organizations, you will add this account to your Organization(s) and grant it the Owner role. +* If you don’t use npm Organizations, you will add this account as a Maintainer to your npm Packages. + +### Option 2: Opt Out** + +Projects that feel their governance is sufficient to provide continuity may opt out of this policy by requesting an exception from the CPC. + +To initiate this process, please create an issue in the [CPC repository](https://github.com/openjs-foundation/cross-project-council/issues). + +- Organizations with 1-2 maintainers in the Owner role are the highest priority for this policy and are unlikely to be granted an exception. +- Organizations with 3 or more maintainers in the Owner role who have been active in the past [6||12] months will be considered for an exception. \ No newline at end of file From 4eb1a4f4ac1b66119af54f33188cb1954575fc2e Mon Sep 17 00:00:00 2001 From: rudd Date: Mon, 30 Jun 2025 20:08:18 -0700 Subject: [PATCH 2/8] Update project-resources/npm-continuity-policy.md MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Co-authored-by: Michał Gołębiowski-Owczarek Signed-off-by: rudd --- project-resources/npm-continuity-policy.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/project-resources/npm-continuity-policy.md b/project-resources/npm-continuity-policy.md index 8f30afca..f8cd8f23 100644 --- a/project-resources/npm-continuity-policy.md +++ b/project-resources/npm-continuity-policy.md @@ -12,7 +12,7 @@ It addresses the following use cases: # Continuity Options for Projects -### Option 1: Add an OpenJS Continuity Account to your npm Organization(s) and/or Packages** +### Option 1: Add an OpenJS Continuity Account to your npm Organization(s) and/or Packages If you select this option a new, dedicated OpenJS account will be created specifically for your Project. This account will be managed by the OpenJS Executive Director (Robin Ginn, [@rginn](https://github.com/rginn)). From a939989918f488b80f5e7f2b3e6a6327120c9db6 Mon Sep 17 00:00:00 2001 From: rudd Date: Mon, 30 Jun 2025 20:14:11 -0700 Subject: [PATCH 3/8] Update project-resources/npm-continuity-policy.md Co-authored-by: Jordan Harband Signed-off-by: rudd --- project-resources/npm-continuity-policy.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/project-resources/npm-continuity-policy.md b/project-resources/npm-continuity-policy.md index f8cd8f23..ddeb9bae 100644 --- a/project-resources/npm-continuity-policy.md +++ b/project-resources/npm-continuity-policy.md @@ -19,7 +19,7 @@ If you select this option a new, dedicated OpenJS account will be created specif To initiate this process, please create an issue in the [Infrastructure repository](https://github.com/openjs-foundation/infrastructure/issues/new?template=IT-SUPPORT-REQUEST.yml). * If you use npm Organizations, you will add this account to your Organization(s) and grant it the Owner role. -* If you don’t use npm Organizations, you will add this account as a Maintainer to your npm Packages. +* If you don’t use npm Organizations, you will add this account as an Owner to your npm Packages. ### Option 2: Opt Out** From 2ba60449bffa0fd3a8994813bff4b5367929ea29 Mon Sep 17 00:00:00 2001 From: rudd Date: Mon, 30 Jun 2025 20:30:59 -0700 Subject: [PATCH 4/8] Update npm-continuity-policy.md Signed-off-by: rudd --- project-resources/npm-continuity-policy.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/project-resources/npm-continuity-policy.md b/project-resources/npm-continuity-policy.md index ddeb9bae..88e106ea 100644 --- a/project-resources/npm-continuity-policy.md +++ b/project-resources/npm-continuity-policy.md @@ -28,4 +28,4 @@ Projects that feel their governance is sufficient to provide continuity may opt To initiate this process, please create an issue in the [CPC repository](https://github.com/openjs-foundation/cross-project-council/issues). - Organizations with 1-2 maintainers in the Owner role are the highest priority for this policy and are unlikely to be granted an exception. -- Organizations with 3 or more maintainers in the Owner role who have been active in the past [6||12] months will be considered for an exception. \ No newline at end of file +- Organizations with 3 or more maintainers in the Owner role who have been active in the past [6||12] months will be considered for an exception. From 5f45cfe8b08a68ea6109f7f9aed025bd31db095d Mon Sep 17 00:00:00 2001 From: rudd Date: Mon, 30 Jun 2025 20:31:11 -0700 Subject: [PATCH 5/8] Update project-resources/npm-continuity-policy.md Co-authored-by: Matteo Collina Signed-off-by: rudd --- project-resources/npm-continuity-policy.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/project-resources/npm-continuity-policy.md b/project-resources/npm-continuity-policy.md index 88e106ea..4ef311b7 100644 --- a/project-resources/npm-continuity-policy.md +++ b/project-resources/npm-continuity-policy.md @@ -2,7 +2,7 @@ ## Summary -This policy is intended to ensure that OpenJS npm Organizations remain accessible and manageable. +This policy is intended to ensure that OpenJS npm Packages and Organizations remain accessible and manageable. It applies to all packages that are published on npm and part of a project. It addresses the following use cases: From e87075da7dec82a6f33cde35ebb055f030aec6e4 Mon Sep 17 00:00:00 2001 From: rudd Date: Mon, 30 Jun 2025 20:31:40 -0700 Subject: [PATCH 6/8] Update project-resources/npm-continuity-policy.md MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Co-authored-by: Michał Gołębiowski-Owczarek Signed-off-by: rudd --- project-resources/npm-continuity-policy.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/project-resources/npm-continuity-policy.md b/project-resources/npm-continuity-policy.md index 4ef311b7..3584e302 100644 --- a/project-resources/npm-continuity-policy.md +++ b/project-resources/npm-continuity-policy.md @@ -21,7 +21,7 @@ To initiate this process, please create an issue in the [Infrastructure reposito * If you use npm Organizations, you will add this account to your Organization(s) and grant it the Owner role. * If you don’t use npm Organizations, you will add this account as an Owner to your npm Packages. -### Option 2: Opt Out** +### Option 2: Opt Out Projects that feel their governance is sufficient to provide continuity may opt out of this policy by requesting an exception from the CPC. From acdd1c0e37825551b2604f9a7a9dc91c9f88682c Mon Sep 17 00:00:00 2001 From: rudd Date: Wed, 2 Jul 2025 15:36:42 -0700 Subject: [PATCH 7/8] Update project-resources/npm-continuity-policy.md Co-authored-by: Matteo Collina Signed-off-by: rudd --- project-resources/npm-continuity-policy.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/project-resources/npm-continuity-policy.md b/project-resources/npm-continuity-policy.md index 3584e302..91a07fa9 100644 --- a/project-resources/npm-continuity-policy.md +++ b/project-resources/npm-continuity-policy.md @@ -14,7 +14,8 @@ It addresses the following use cases: ### Option 1: Add an OpenJS Continuity Account to your npm Organization(s) and/or Packages -If you select this option a new, dedicated OpenJS account will be created specifically for your Project. This account will be managed by the OpenJS Executive Director (Robin Ginn, [@rginn](https://github.com/rginn)). +If you select this option a new, dedicated OpenJS account will be created specifically for your Project. The OpenJS Executive Director will manage this account. +If your project already has a dedicated continuity account in place, share the credentials securely (ideally a shared password manager) with the Executive Director. To initiate this process, please create an issue in the [Infrastructure repository](https://github.com/openjs-foundation/infrastructure/issues/new?template=IT-SUPPORT-REQUEST.yml). From f392fff83e3307fbd9cffba18da7b5b62e12475b Mon Sep 17 00:00:00 2001 From: rudd Date: Wed, 2 Jul 2025 15:38:32 -0700 Subject: [PATCH 8/8] Update npm-continuity-policy.md Signed-off-by: rudd --- project-resources/npm-continuity-policy.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/project-resources/npm-continuity-policy.md b/project-resources/npm-continuity-policy.md index 91a07fa9..a212c03d 100644 --- a/project-resources/npm-continuity-policy.md +++ b/project-resources/npm-continuity-policy.md @@ -30,3 +30,6 @@ To initiate this process, please create an issue in the [CPC repository](https:/ - Organizations with 1-2 maintainers in the Owner role are the highest priority for this policy and are unlikely to be granted an exception. - Organizations with 3 or more maintainers in the Owner role who have been active in the past [6||12] months will be considered for an exception. + +Please contact the OpenJS Foundation ([operations@openjsf.org](mailto:operations@openjsf.org)) for questions or help with this policy. +