RFC 9225, "Software Defects Considered Harmful", April 2022Source of RFC: INDEPENDENT
Errata ID: 6910
Publication Format(s) : TEXT, PDF, HTML
Reported By: Joe Klein
Date Reported: 2022-04-01
Rejected by: Eliot Lear (ISE)
Date Rejected: 2022-08-21
Section 4. Best Current says:
6. In fact, assume all internal inputs also are the result of bugs.
It should say:
6. In fact, assume all internal inputs also are the result of bugs. 7. If the bug population increases after each subsequent software release, it is generally RECOMMENDED to deploy a Software Bug [BOMbs], and return when the air has cleared. [BOMbs] National Telecommunications and Information Administration, United States Department of Commerce, 2021, https://ntia.gov/SBOM
Extend the RFC to include another best practice, associated with BOMbs.
Thanks for your thoughts. Follow-ups to this RFC are welcome, but must stand on their own merit.