doc: cncf onboarding and sponsor update

Signed-off-by: Jan Larwig <jan@larwig.com>
2026-01-15 13:15:25 +01:00 · 2026-01-15 13:15:25 +01:00 · f46dcc77a8
parent 34c2712c99
commit f46dcc77a8
15 changed files with 215 additions and 167 deletions
--- a/ADOPTERS.md
+++ b/ADOPTERS.md
@ -1,28 +0,0 @@
-# Adopters
-
-This list showcases organizations that leverage OAuth2-Proxy within their
-infrastructure. If your organization uses OAuth2-Proxy and isn't yet listed, we
-encourage you to add it!
-
-This list aims to be a comprehensive and trusted resource for the OAuth2-Proxy
-community, demonstrating successful adoption across all kinds of industries.
-
-Contributing to this list is a simple way to impact the project's growth,
-maturity, and momentum. Thank you to all adopters and contributors of the
-OAuth2-Proxy project!
-
-## Updating this list
-
-To add your organization to this list, you can just [open a PR](https://github.com/oauth2-proxy/oauth2-proxy/pulls)
-to directly update this list.
-
-Add your organization name, your github username and if you desire a short
-description on how you utilize oauth2-proxy.
-
-## OAuth2-Proxy Adopters
-
-This list is sorted in the order that organizations were added to it.
-
-| Organization | Contact | Description of Use |
-| ------------ | ------- | ------------------ |
-|              |         |                    |
--- a/CODE_OF_CONDUCT.md
+++ b/CODE_OF_CONDUCT.md
@ -1,134 +1,112 @@
-# Contributor Covenant Code of Conduct
+## CNCF Community Code of Conduct v1.3

-## Our Pledge
+Other languages available:
+- [Arabic/العربية](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/ar.md)
+- [Bengali/বাংলা](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/bn.md)
+- [Bulgarian/Български](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/bg.md)
+- [Chinese/中文](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/zh.md)
+- [Czech/Česky](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/cs.md)
+- [Farsi/فارسی](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/fa.md)
+- [French/Français](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/fr.md)
+- [German/Deutsch](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/de.md)
+- [Hebrew/עברית](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/he.md)
+- [Hindi/हिन्दी](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/hi.md)
+- [Hungarian/Magyar](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/hu.md)
+- [Indonesian/Bahasa Indonesia](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/id.md)
+- [Italian/Italiano](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/it.md)
+- [Japanese/日本語](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/ja.md)
+- [Korean/한국어](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/ko.md)
+- [Polish/Polski](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/pl.md)
+- [Portuguese/Português](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/pt.md)
+- [Russian/Русский](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/ru.md)
+- [Spanish/Español](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/es.md)
+- [Turkish/Türkçe](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/tr.md)
+- [Ukrainian/Українська](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/uk.md)
+- [Vietnamese/Tiếng Việt](https://github.com/cncf/foundation/blob/main/code-of-conduct-languages/vi.md)

-We as members, contributors, and leaders pledge to make participation in our
-community a harassment-free experience for everyone, regardless of age, body
-size, visible or invisible disability, ethnicity, sex characteristics, gender
-identity and expression, level of experience, education, socio-economic status,
-nationality, personal appearance, race, caste, color, religion, or sexual
-identity and orientation.
+### Community Code of Conduct

-We pledge to act and interact in ways that contribute to an open, welcoming,
-diverse, inclusive, and healthy community.
+As contributors, maintainers, and participants in the CNCF community, and in the interest of fostering
+an open and welcoming community, we pledge to respect all people who participate or contribute
+through reporting issues, posting feature requests, updating documentation,
+submitting pull requests or patches, attending conferences or events, or engaging in other community or project activities.
+
+We are committed to making participation in the CNCF community a harassment-free experience for everyone, regardless of age, body size, caste, disability, ethnicity, level of experience, family status, gender, gender identity and expression, marital status, military or veteran status, nationality, personal appearance, race, religion, sexual orientation, socioeconomic status, tribe, or any other dimension of diversity.
+
+## Scope
+
+This code of conduct applies:
+* within project and community spaces,
+* in other spaces when an individual CNCF community participant's words or actions are directed at or are about a CNCF project, the CNCF community, or another CNCF community participant in the context of a CNCF activity.
+
+### CNCF Events
+
+CNCF events that are produced by the Linux Foundation with professional events staff are governed by the Linux Foundation [Events Code of Conduct](https://events.linuxfoundation.org/code-of-conduct/) available on the event page. This is designed to be used in conjunction with the CNCF Code of Conduct.

 ## Our Standards

-Examples of behavior that contributes to a positive environment for our
-community include:
+The CNCF Community is open, inclusive and respectful. Every member of our community has the right to have their identity respected.
+
+Examples of behavior that contributes to a positive environment include but are not limited to:

 * Demonstrating empathy and kindness toward other people
 * Being respectful of differing opinions, viewpoints, and experiences
 * Giving and gracefully accepting constructive feedback
 * Accepting responsibility and apologizing to those affected by our mistakes,
  and learning from the experience
-* Focusing on what is best not just for us as individuals, but for the overall
-  community
+* Focusing on what is best not just for us as individuals, but for the
+  overall community
+* Using welcoming and inclusive language

-Examples of unacceptable behavior include:

-* The use of sexualized language or imagery, and sexual attention or advances of
-  any kind
+Examples of unacceptable behavior include but are not limited to:
+
+* The use of sexualized language or imagery
 * Trolling, insulting or derogatory comments, and personal or political attacks
-* Public or private harassment
-* Publishing others' private information, such as a physical or email address,
-  without their explicit permission
+* Public or private harassment in any form
+* Publishing others' private information, such as a physical or email
+  address, without their explicit permission
+* Violence, threatening violence, or encouraging others to engage in violent behavior
+* Stalking or following someone without their consent
+* Unwelcome physical contact
+* Unwelcome sexual or romantic attention or advances
+* Using CNCF projects or community spaces for political campaigning or promotion of political causes 
+  that are unrelated to the advancement of cloud native technology. To clarify, this policy does not restrict individuals' personal attire, including attire that expresses personal beliefs or aspects of identity.
 * Other conduct which could reasonably be considered inappropriate in a
  professional setting

-## Enforcement Responsibilities
+The following behaviors are also prohibited:
+* Providing knowingly false or misleading information in connection with a Code of Conduct investigation or otherwise intentionally tampering with an investigation.
+* Retaliating against a person because they reported an incident or provided information about an incident as a witness.

-Community leaders are responsible for clarifying and enforcing our standards of
-acceptable behavior and will take appropriate and fair corrective action in
-response to any behavior that they deem inappropriate, threatening, offensive,
-or harmful.
+Project maintainers have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct.
+By adopting this Code of Conduct, project maintainers commit themselves to fairly and consistently applying these principles to every aspect
+of managing a CNCF project.
+Project maintainers who do not follow or enforce the Code of Conduct may be temporarily or permanently removed from the project team.

-Community leaders have the right and responsibility to remove, edit, or reject
-comments, commits, code, wiki edits, issues, and other contributions that are
-not aligned to this Code of Conduct, and will communicate reasons for moderation
-decisions when appropriate.
+## Reporting

-## Scope
+For incidents occurring in the Kubernetes community, contact the [Kubernetes Code of Conduct Committee](https://git.k8s.io/community/committee-code-of-conduct) via <conduct@kubernetes.io>. You can expect a response within three business days.

-This Code of Conduct applies within all community spaces, and also applies when
-an individual is officially representing the community in public spaces.
-Examples of representing our community include using an official email address,
-posting via an official social media account, or acting as an appointed
-representative at an online or offline event.
+For other projects, or for incidents that are project-agnostic or impact multiple CNCF projects, please contact the [CNCF Code of Conduct Committee](https://www.cncf.io/conduct/committee/) via <conduct@cncf.io>.  Alternatively, you can contact any of the individual members of the [CNCF Code of Conduct Committee](https://www.cncf.io/conduct/committee/) to submit your report. For more detailed instructions on how to submit a report, including how to submit a report anonymously, please see our [Incident Resolution Procedures](https://github.com/cncf/foundation/blob/main/code-of-conduct/coc-incident-resolution-procedures.md). You can expect a response within three business days.
+
+For incidents occurring at CNCF event that is produced by the Linux Foundation, please contact <eventconduct@cncf.io>.
+
+## Frequently asked questions
+For more information about this Code of Conduct, please see the [CNCF Code of Conduct Frequently Asked Questions](https://www.cncf.io/conduct/faq/).

 ## Enforcement

-Instances of abusive, harassing, or otherwise unacceptable behavior may be
-reported to the community leaders responsible for enforcement at
-https://gophers.slack.com/messages/CM2RSS25N or directly contacting one of the
-maintainers from the MAINTAINERS file.
-All complaints will be reviewed and investigated promptly and fairly.
+Upon review and investigation of a reported incident, the CoC response team that has jurisdiction will determine what action is appropriate based on this Code of Conduct and its related documentation.

-All community leaders are obligated to respect the privacy and security of the
-reporter of any incident.
+For information about which Code of Conduct incidents are handled by project leadership, which incidents are handled by the CNCF Code of Conduct Committee, and which incidents are handled by the Linux Foundation (including its events team), see our [Jurisdiction Policy](https://github.com/cncf/foundation/blob/main/code-of-conduct/coc-committee-jurisdiction-policy.md).

-## Enforcement Guidelines
+## Amendments

-Community leaders will follow these Community Impact Guidelines in determining
-the consequences for any action they deem in violation of this Code of Conduct:
+Consistent with the CNCF Charter, any substantive changes to this Code of Conduct must be approved by the Technical Oversight Committee.

-### 1. Correction
-
-**Community Impact**: Use of inappropriate language or other behavior deemed
-unprofessional or unwelcome in the community.
-
-**Consequence**: A private, written warning from community leaders, providing
-clarity around the nature of the violation and an explanation of why the
-behavior was inappropriate. A public apology may be requested.
-
-### 2. Warning
-
-**Community Impact**: A violation through a single incident or series of
-actions.
-
-**Consequence**: A warning with consequences for continued behavior. No
-interaction with the people involved, including unsolicited interaction with
-those enforcing the Code of Conduct, for a specified period of time. This
-includes avoiding interactions in community spaces as well as external channels
-like social media. Violating these terms may lead to a temporary or permanent
-ban.
-
-### 3. Temporary Ban
-
-**Community Impact**: A serious violation of community standards, including
-sustained inappropriate behavior.
-
-**Consequence**: A temporary ban from any sort of interaction or public
-communication with the community for a specified period of time. No public or
-private interaction with the people involved, including unsolicited interaction
-with those enforcing the Code of Conduct, is allowed during this period.
-Violating these terms may lead to a permanent ban.
-
-### 4. Permanent Ban
-
-**Community Impact**: Demonstrating a pattern of violation of community
-standards, including sustained inappropriate behavior, harassment of an
-individual, or aggression toward or disparagement of classes of individuals.
-
-**Consequence**: A permanent ban from any sort of public interaction within the
-community.
-
-## Attribution
-
-This Code of Conduct is adapted from the [Contributor Covenant][homepage],
-version 2.1, available at
-[https://www.contributor-covenant.org/version/2/1/code_of_conduct.html][v2.1].
-
-Community Impact Guidelines were inspired by
-[Mozilla's code of conduct enforcement ladder][Mozilla CoC].
-
-For answers to common questions about this code of conduct, see the FAQ at
-[https://www.contributor-covenant.org/faq][FAQ]. Translations are available at
-[https://www.contributor-covenant.org/translations][translations].
-
-[homepage]: https://www.contributor-covenant.org
-[v2.1]: https://www.contributor-covenant.org/version/2/1/code_of_conduct.html
-[Mozilla CoC]: https://github.com/mozilla/diversity
-[FAQ]: https://www.contributor-covenant.org/faq
-[translations]: https://www.contributor-covenant.org/translations
+## Acknowledgements

+This Code of Conduct is adapted from the Contributor Covenant
+(http://contributor-covenant.org), version 2.0 available at
+http://contributor-covenant.org/version/2/0/code_of_conduct/
--- a/DCO.md
+++ b/DCO.md
@ -0,0 +1,34 @@
+Developer Certificate of Origin
+Version 1.1
+
+Copyright (C) 2004, 2006 The Linux Foundation and its contributors.
+
+Everyone is permitted to copy and distribute verbatim copies of this
+license document, but changing it is not allowed.
+
+
+Developer's Certificate of Origin 1.1
+
+By making a contribution to this project, I certify that:
+
+(a) The contribution was created in whole or in part by me and I
+    have the right to submit it under the open source license
+    indicated in the file; or
+
+(b) The contribution is based upon previous work that, to the best
+    of my knowledge, is covered under an appropriate open source
+    license and I have the right under that license to submit that
+    work with modifications, whether created in whole or in part
+    by me, under the same open source license (unless I am
+    permitted to submit under a different license), as indicated
+    in the file; or
+
+(c) The contribution was provided directly to me by some other
+    person who certified (a), (b) or (c) and I have not modified
+    it.
+
+(d) I understand and agree that this project and the contribution
+    are public and that a record of the contribution (including all
+    personal information I submit with it, including my sign-off) is
+    maintained indefinitely and may be redistributed consistent with
+    this project or the open source license(s) involved.
--- a/7
+++ b/7
@ -1,5 +1,2 @@
-Joel Speed <joel@oauth2-proxy.dev> (@JoelSpeed)
-Nick Meves <nick@oauth2-proxy.dev> (@NickMeves)
-Braunson <braunson@oauth2-proxy.dev> (@braunsonm)
-Jan Larwig <jan@oauth2-proxy.dev> (@tuunit)
-Koen van Zuijlen <koen@oauth2-proxy.dev> (@kvanzuijlen)
+
+Moved to https://github.com/oauth2-proxy/oauth2-proxy/blob/master/MAINTAINERS.md
--- a/MAINTAINERS.md
+++ b/MAINTAINERS.md
@ -0,0 +1,33 @@
+# Maintainers
+
+The table below lists all current maintainers for the oauth2-proxy as defined
+by our [project governance](GOVERNANCE.md).
+
+| Name             | GitHub Handle                                          | Domains of reponsibility | Email Alias                | Affiliation |
+| ---------------- | ------------------------------------------------------ | ------------------------ | -------------------------- | ----------- |
+| Joel Speed       | [@JoelSpeed](https://github.com/joelspeed)             | Governance, Core         | joel@oauth2-proxy.dev      | Red Hat     |
+| Jan Larwig       | [@tuunit](https://github.com/tuunit)                   | Governance, Core         | jan@oauth2-proxy.dev       | IONOS Cloud |
+| JJ Łakis         | [@jjlakis](https://github.com/jjlakis)                 | Provider                 | jj@oauth2-proxy.dev        | -           |
+| Koen van Zuijlen | [@kvanzuijlen](https://github.com/kvanzuijlen)         | CI                       | koen@oauth2-proxy.dev      | -           |
+| Pierluigi Lenoci | [@pierluigilenoci](https://github.com/pierluigilenoci) | Helm                     | pierluigi@oauth2-proxy.dev | SAP         |
+
+## Emeritus Maintainers
+
+We would like to highlight that this project does have prior maintainers and 
+core contributors that, if they so wished, could (and should) be granted the
+status of emeritus maintainers.
+
+| Name          | GitHub Handle                                          |
+| ------------- | ------------------------------------------------------ |
+| Nick Meves    | [@NickMeves](https://github.com/NickMeves)             |
+| Braunson      | [@braunsonm](https://github.com/braunsonm)             |
+| Henry Jenkins | [@steakunderscore](https://github.com/steakunderscore) |
+
+
+## Security Response Team and GitHub Organization Owners
+
+The following maintainers are members of the security response team and owners
+of the GitHub organization.
+
+- Joel Speed
+- Jan Larwig
--- a/README.md
+++ b/README.md
@ -1,22 +1,24 @@
 [![Continuous Integration](https://github.com/oauth2-proxy/oauth2-proxy/actions/workflows/ci.yml/badge.svg)](https://github.com/oauth2-proxy/oauth2-proxy/actions/workflows/ci.yml)
-[![Go Report Card](https://goreportcard.com/badge/github.com/oauth2-proxy/oauth2-proxy)](https://goreportcard.com/report/github.com/oauth2-proxy/oauth2-proxy)
-[![GoDoc](https://godoc.org/github.com/oauth2-proxy/oauth2-proxy?status.svg)](https://godoc.org/github.com/oauth2-proxy/oauth2-proxy)
+[![Go Report Card](https://goreportcard.com/badge/github.com/oauth2-proxy/oauth2-proxy)](https://goreportcard.com/report/github.com/oauth2-proxy/oauth2-proxy/v7)
+[![GoDoc](https://godoc.org/github.com/oauth2-proxy/oauth2-proxy?status.svg)](https://godoc.org/github.com/oauth2-proxy/oauth2-proxy/v7)
 [![MIT licensed](https://img.shields.io/badge/license-MIT-blue.svg)](./LICENSE)
-[![Maintainability](https://api.codeclimate.com/v1/badges/a58ff79407212e2beacb/maintainability)](https://codeclimate.com/github/oauth2-proxy/oauth2-proxy/maintainability)
-[![Test Coverage](https://api.codeclimate.com/v1/badges/a58ff79407212e2beacb/test_coverage)](https://codeclimate.com/github/oauth2-proxy/oauth2-proxy/test_coverage)
+[![Maintainability](https://qlty.sh/gh/oauth2-proxy/projects/oauth2-proxy/maintainability.svg)](https://qlty.sh/gh/oauth2-proxy/projects/oauth2-proxy)
+[![Code Coverage](https://qlty.sh/gh/oauth2-proxy/projects/oauth2-proxy/coverage.svg)](https://qlty.sh/gh/oauth2-proxy/projects/oauth2-proxy)
+[![OpenSSF Scorecard](https://api.scorecard.dev/projects/github.com/oauth2-proxy/oauth2-proxy/badge)](https://scorecard.dev/viewer/?uri=github.com/oauth2-proxy/oauth2-proxy)
+[![OpenSSF Best Practices](https://www.bestpractices.dev/projects/11223/badge)](https://www.bestpractices.dev/projects/11223)
 [![FOSSA Status](https://app.fossa.com/api/projects/git%2Bgithub.com%2Foauth2-proxy%2Foauth2-proxy.svg?type=shield)](https://app.fossa.com/projects/git%2Bgithub.com%2Foauth2-proxy%2Foauth2-proxy?ref=badge_shield)

 ![OAuth2 Proxy](docs/static/img/logos/OAuth2_Proxy_horizontal.svg)

-OAuth2-Proxy is a flexible, open-source tool that can act as either a standalone reverse proxy or a middleware component integrated into existing reverse proxy or load balancer setups. It provides a simple and secure way to protect your web applications with OAuth2 / OIDC authentication. As a reverse proxy, it intercepts requests to your application and redirects users to an OAuth2 provider for authentication. As a middleware, it can be seamlessly integrated into your existing infrastructure to handle authentication for multiple applications.
+OAuth2 Proxy is a flexible, open-source tool that can act as either a standalone reverse proxy or a middleware component integrated into existing reverse proxy or load balancer setups. It provides a simple and secure way to protect your web applications with OAuth2 / OIDC authentication. As a reverse proxy, it intercepts requests to your application and redirects users to an OAuth2 provider for authentication. As a middleware, it can be seamlessly integrated into your existing infrastructure to handle authentication for multiple applications.

-OAuth2-Proxy supports a lot of OAuth2 as well as OIDC providers. Either through a generic OIDC client or a specific implementation for Google, Microsoft Entra ID, GitHub, login.gov and others. Through specialised provider implementations oauth2-proxy can extract more details about the user like preferred usernames and groups. Those details can then be forwarded as HTTP headers to your upstream applications.
+OAuth2 Proxy supports a lot of OAuth2 as well as OIDC providers. Either through a generic OIDC client or a specific implementation for Google, Microsoft Entra ID, GitHub, login.gov and others. Through specialised provider implementations oauth2-proxy can extract more details about the user like preferred usernames and groups. Those details can then be forwarded as HTTP headers to your upstream applications.

 ![Simplified Architecture](docs/static/img/simplified-architecture.svg)

 ## Get Started

-OAuth2-Proxy's [Installation Docs](https://oauth2-proxy.github.io/oauth2-proxy/installation) cover how to install and configure your setup. Additionally you can take a further look at the [example setup files](https://github.com/oauth2-proxy/oauth2-proxy/tree/master/contrib/local-environment).
+OAuth2 Proxy's [Installation Docs](https://oauth2-proxy.github.io/oauth2-proxy/installation) cover how to install and configure your setup. Additionally you can take a further look at the [example setup files](https://github.com/oauth2-proxy/oauth2-proxy/tree/master/contrib/local-environment).

 ## Releases

@ -35,24 +37,26 @@ Since 2023-11-18 we build nightly images directly from the `master` branch and p
 These images are considered unstable and therefore should **NOT** be used for production purposes unless you know what you're doing.

 ## Sponsors
-
-![Microsoft](https://upload.wikimedia.org/wikipedia/commons/9/96/Microsoft_logo_%282012%29.svg)
-Microsoft Azure credits for open source projects
-
 Would you like to sponsor the project then please contact us at [sponsors@oauth2-proxy.dev](mailto:sponsors@oauth2-proxy.dev)

+![SAP](https://avatars.githubusercontent.com/u/2531208?s=300&v=4)
+
+SAP Open Source Program
+
+## Former Sponsors
+![Microsoft](https://avatars.githubusercontent.com/u/6154722?s=100&v=4)
+
+Microsoft Azure credits for open source projects
+
 ## Getting Involved
 [![Slack](https://img.shields.io/badge/slack-Gopher_%23oauth2--proxy-red?logo=slack)](https://gophers.slack.com/archives/CM2RSS25N)

 Join the #oauth2-proxy [Slack channel](https://gophers.slack.com/archives/CM2RSS25N) to chat with other users of oauth2-proxy or reach out to the maintainers directly. Use the [public invite link](https://invite.slack.golangbridge.org/) to get an invite for the Gopher Slack space.

-OAuth2-Proxy is a community-driven project. We rely on the contribut️ions of our users to continually improve it. While review times can vary, we appreciate your patience and understanding. As a volunteer-driven project, we strive to keep this project stable and might take longer to merge changes.
+OAuth2 Proxy is a community-driven project. We rely on the contribut️ions of our users to continually improve it. While review times can vary, we appreciate your patience and understanding. As a volunteer-driven project, we strive to keep this project stable and might take longer to merge changes.

 If you want to contribute to the project. Please see our [Contributing](https://oauth2-proxy.github.io/oauth2-proxy/community/contribution) guide.

-Who uses OAuth2-Proxy? Have a look at our new [ADOPTERS](ADOPTERS.md) file and
-feel free to open a PR to add your organisation.
-
 Thanks to all the people who already contributed ❤

 <a href="https://github.com/oauth2-proxy/oauth2-proxy/graphs/contributors">
@ -66,7 +70,7 @@ Made with [contrib.rocks](https://contrib.rocks).

 If you believe you have found a vulnerability within OAuth2 Proxy or any of its dependencies, please do **NOT** open an issue or PR on GitHub, please do **NOT** post any details publicly.

-Security disclosures **MUST** be done in private. If you have found an issue that you would like to bring to the attention of the maintainers, please compose an email and send it to the list of people listed in our [MAINTAINERS](MAINTAINERS) file.
+Security disclosures **MUST** be done in private. If you have found an issue that you would like to bring to the attention of the maintainers, please compose an email and send it to the list of people listed in our [MAINTAINERS.md](MAINTAINERS.md) file.

 For more details read our full [Security Docs](https://oauth2-proxy.github.io/oauth2-proxy/community/security#security-disclosures)

@ -82,9 +86,20 @@ See [open redirect vulnerability](https://github.com/oauth2-proxy/oauth2-proxy/s

 **2020-03-29:** This project was formerly hosted as `pusher/oauth2_proxy` but has been renamed to `oauth2-proxy/oauth2-proxy`. Going forward, all images shall be available at `quay.io/oauth2-proxy/oauth2-proxy` and binaries will be named `oauth2-proxy`.

+## Code of Conduct
+Participation in the OAuth2 Proxy project is governed by the [CNCF Code of Conduct](CODE_OF_CONDUCT.md).
+
 ## License

-OAuth2-Proxy is distributed under [The MIT License](LICENSE).
+OAuth2 Proxy is distributed under [The MIT License](LICENSE).


 [![FOSSA Status](https://app.fossa.com/api/projects/git%2Bgithub.com%2Foauth2-proxy%2Foauth2-proxy.svg?type=large)](https://app.fossa.com/projects/git%2Bgithub.com%2Foauth2-proxy%2Foauth2-proxy?ref=badge_large)
+
+## Trademarks
+
+OAuth2 Proxy is a [Cloud Native Computing Foundation](https://cncf.io) Sandbox project.
+
+![CNCF](https://www.cncf.io/wp-content/uploads/2023/04/cncf-main-site-logo.svg)
+
+The Linux Foundation® (TLF) has registered trademarks and uses trademarks. For a list of TLF trademarks, see [Trademark Usage](https://www.linuxfoundation.org/legal/trademark-usage).
--- a/docs/docs/community/contribution.md
+++ b/docs/docs/community/contribution.md
@ -39,7 +39,7 @@ For starting oauth2-proxy locally open the debugging tab and create the `launch.
    "version": "0.2.0",
    "configurations": [
        {
-            "name": "Launch OAuth2-Proxy with Dex",
+            "name": "Launch OAuth2 Proxy with Dex",
            "type": "go",
            "request": "launch",
            "mode": "auto",
@ -52,7 +52,7 @@ For starting oauth2-proxy locally open the debugging tab and create the `launch.
            ]
        },
        {
-            "name": "Launch OAuth2-Proxy with Keycloak",
+            "name": "Launch OAuth2 Proxy with Keycloak",
            "type": "go",
            "request": "launch",
            "mode": "auto",
@ -85,7 +85,7 @@ The username and password for all setups is usually `admin@example.com` and `pas

 The docker compose setups expose the services with a dynamic reverse DNS resolver: localtest.me

- OAuth2-Proxy: http://oauth2-proxy.localtest.me:4180
+- OAuth2 Proxy: http://oauth2-proxy.localtest.me:4180
 - Upstream: http://httpbin.localtest.me:8080
 - Dex: http://dex.localtest.me:5556

--- a/docs/docs/community/security.md
+++ b/docs/docs/community/security.md
@ -21,7 +21,7 @@ any details publicly.
 Security disclosures MUST be done in private.
 If you have found an issue that you would like to bring to the attention of the
 maintenance team for OAuth2 Proxy, please compose an email and send it to the
-list of maintainers in our [MAINTAINERS](https://github.com/oauth2-proxy/oauth2-proxy/blob/master/MAINTAINERS) file.
+list of maintainers in our [MAINTAINERS.md](https://github.com/oauth2-proxy/oauth2-proxy/blob/master/MAINTAINERS.md) file.

 Please include as much detail as possible.
 Ideally, your disclosure should include:
--- a/docs/docs/configuration/sessions.md
+++ b/docs/docs/configuration/sessions.md
@ -64,9 +64,9 @@ the refresh flow to get a new Access-Token. If it is longer, it might be that th
 expired.

 The "cookie-refresh" value controls when OAuth2 Proxy tries to refresh an Access-Token. If it is set to "0", the
-Access-Token will never be refreshed, even if it is already expired and a valid Refresh-Token is available. If set, OAuth2-Proxy will
+Access-Token will never be refreshed, even if it is already expired and a valid Refresh-Token is available. If set, OAuth2 Proxy will
 refresh the Access-Token after this many seconds whether it is still valid or not. According to the official OAuth2.0 specification 
-Access-Tokens are not required to follow a specific format. Therefore OAuth2-Proxy cannot check for any expiry date without an 
+Access-Tokens are not required to follow a specific format. Therefore OAuth2 Proxy cannot check for any expiry date without an 
 introspection endpoint. If an Access-Token expires and you have not set a corresponding "cookie-refresh" value, you will likely 
 encounter expiry issues.

--- a/docs/docs/welcome.md
+++ b/docs/docs/welcome.md
@ -21,3 +21,13 @@ A list of changes can be seen in the [CHANGELOG](https://github.com/oauth2-proxy
 ## Architecture

 ![OAuth2 Proxy Architecture](/img/simplified-architecture.svg)
+
+
+## Cloud Native Computing Foundation
+
+OAuth2 Proxy is a [Cloud Native Computing Foundation](https://cncf.io) Sandbox project.
+
+![CNCF](https://www.cncf.io/wp-content/uploads/2023/04/cncf-main-site-logo.svg)
+
+The Linux Foundation® (TLF) has registered trademarks and uses trademarks. For a list of TLF trademarks, see [Trademark Usage](https://www.linuxfoundation.org/legal/trademark-usage).
+
--- a/docs/docusaurus.config.js
+++ b/docs/docusaurus.config.js
@ -118,7 +118,7 @@ const config = {
      },
      footer: {
        style: 'dark',
-        copyright: `Copyright © ${new Date().getFullYear()} OAuth2 Proxy.`,
+        copyright: `Copyright © ${new Date().getFullYear()} OAuth2 Proxy a Series of LF Projects, LLC.<br>For website terms of use, trademark policy and other project policies please see lfprojects.org/policies/`,
      },
      prism: {
        theme: prismThemes.github,
--- a/docs/versioned_docs/version-7.14.x/community/contribution.md
+++ b/docs/versioned_docs/version-7.14.x/community/contribution.md
@ -39,7 +39,7 @@ For starting oauth2-proxy locally open the debugging tab and create the `launch.
    "version": "0.2.0",
    "configurations": [
        {
-            "name": "Launch OAuth2-Proxy with Dex",
+            "name": "Launch OAuth2 Proxy with Dex",
            "type": "go",
            "request": "launch",
            "mode": "auto",
@ -52,7 +52,7 @@ For starting oauth2-proxy locally open the debugging tab and create the `launch.
            ]
        },
        {
-            "name": "Launch OAuth2-Proxy with Keycloak",
+            "name": "Launch OAuth2 Proxy with Keycloak",
            "type": "go",
            "request": "launch",
            "mode": "auto",
@ -85,7 +85,7 @@ The username and password for all setups is usually `admin@example.com` and `pas

 The docker compose setups expose the services with a dynamic reverse DNS resolver: localtest.me

- OAuth2-Proxy: http://oauth2-proxy.localtest.me:4180
+- OAuth2 Proxy: http://oauth2-proxy.localtest.me:4180
 - Upstream: http://httpbin.localtest.me:8080
 - Dex: http://dex.localtest.me:5556

--- a/docs/versioned_docs/version-7.14.x/community/security.md
+++ b/docs/versioned_docs/version-7.14.x/community/security.md
@ -21,7 +21,7 @@ any details publicly.
 Security disclosures MUST be done in private.
 If you have found an issue that you would like to bring to the attention of the
 maintenance team for OAuth2 Proxy, please compose an email and send it to the
-list of maintainers in our [MAINTAINERS](https://github.com/oauth2-proxy/oauth2-proxy/blob/master/MAINTAINERS) file.
+list of maintainers in our [MAINTAINERS.md](https://github.com/oauth2-proxy/oauth2-proxy/blob/master/MAINTAINERS.md) file.

 Please include as much detail as possible.
 Ideally, your disclosure should include:
--- a/docs/versioned_docs/version-7.14.x/configuration/sessions.md
+++ b/docs/versioned_docs/version-7.14.x/configuration/sessions.md
@ -64,9 +64,9 @@ the refresh flow to get a new Access-Token. If it is longer, it might be that th
 expired.

 The "cookie-refresh" value controls when OAuth2 Proxy tries to refresh an Access-Token. If it is set to "0", the
-Access-Token will never be refreshed, even if it is already expired and a valid Refresh-Token is available. If set, OAuth2-Proxy will
+Access-Token will never be refreshed, even if it is already expired and a valid Refresh-Token is available. If set, OAuth2 Proxy will
 refresh the Access-Token after this many seconds whether it is still valid or not. According to the official OAuth2.0 specification 
-Access-Tokens are not required to follow a specific format. Therefore OAuth2-Proxy cannot check for any expiry date without an 
+Access-Tokens are not required to follow a specific format. Therefore OAuth2 Proxy cannot check for any expiry date without an 
 introspection endpoint. If an Access-Token expires and you have not set a corresponding "cookie-refresh" value, you will likely 
 encounter expiry issues.

--- a/docs/versioned_docs/version-7.14.x/welcome.md
+++ b/docs/versioned_docs/version-7.14.x/welcome.md
@ -21,3 +21,12 @@ A list of changes can be seen in the [CHANGELOG](https://github.com/oauth2-proxy
 ## Architecture

 ![OAuth2 Proxy Architecture](/img/simplified-architecture.svg)
+
+## Cloud Native Computing Foundation
+
+OAuth2 Proxy is a [Cloud Native Computing Foundation](https://cncf.io) Sandbox project.
+
+![CNCF](https://www.cncf.io/wp-content/uploads/2023/04/cncf-main-site-logo.svg)
+
+The Linux Foundation® (TLF) has registered trademarks and uses trademarks. For a list of TLF trademarks, see [Trademark Usage](https://www.linuxfoundation.org/legal/trademark-usage).
+