From 587564e630f37e85d314a100c695af9b5c351d9f Mon Sep 17 00:00:00 2001
From: Dana Wang <Danajoyluck@users.noreply.github.com>
Date: Wed, 24 Jul 2024 08:51:56 -0500
Subject: [PATCH] Update project-lifecycle.md for graduated projects

Added security baseline to graduated project responsibilities.

Signed-off-by: Dana Wang <Danajoyluck@users.noreply.github.com>
---
 process/project-lifecycle.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/process/project-lifecycle.md b/process/project-lifecycle.md
index c5083949..370e23e5 100644
--- a/process/project-lifecycle.md
+++ b/process/project-lifecycle.md
@@ -119,6 +119,7 @@ Graduated projects signal the highest level of maturity for an OpenSSF project.
 * For code development, follows security best practices, including achieving a [Gold OpenSSF Best Practices badge](https://bestpractices.coreinfrastructure.org/en/criteria).
 * For code development, maintains a point of contact for vulnerability reports and follow coordinated vulnerability disclosure practices.
 * Implements, practices, and refines mature development and release practices, such as adherence to semantic versioning, and having a declared policy for stable releases and backported fixes.
+* Meets the "[Security Baseline - Once Graduated](https://github.com/ossf/tac/blob/main/process/security_baseline.md#security-baseline---once-graduated)" requirements.
 
 #### Project Support
 * Receives guidance on technical direction from TAC and/or WG.