cosai-oasis/ws1-supply-chain

AI Summary: The task is to create a Request for Comments (RFC) document outlining a standardized, secure supply chain for AI development tools. This involves researching existing frameworks, considering potential drawbacks and alternatives, and addressing unresolved questions. The RFC should be written collaboratively and will contribute to the CoSAI Workstream 1 project focused on Software Supply Chain Security for AI Systems.

AI Summary: The task is to create a Request for Comments (RFC) document to standardize how model vulnerabilities in AI systems are tracked and reported, addressing inconsistencies across current vendor-specific methods. This involves researching existing vulnerability tracking systems (like CVE and CWE), identifying gaps, proposing a standardized approach, and documenting the process in an RFC template provided by the project.