We are preparing a new path to conformance document via GitHub. The current iteration is biased towards ISO/IEC 5230, the International Standard for open source license compliance. We invite you to take a look, help expand it, and especially help to add material to support the OpenChain Security Assurance Specification.
You can contribute by opening issues:
Or you can join our education mailing list: