fix: update adopters

ADOPTERS.md

@@ -1,7 +1,71 @@
 # OSCAL Compass Adopters
 
-This is a list of organizations that have publicly shared their adoption:
+This is a list of organizations that have publicly shared their <a href="https://github.com/cncf/toc/blob/main/FAQ.md#what-is-the-definition-of-an-adopter">adoption</a>:
 
-- [Red Hat](https://www.redhat.com)
+<table border="1" cellspacing="0" cellpadding="5">
+<tr>
+<th align="left">Year
+<th align="left">Type
+<th align="left">Name
+<th align="left">Website
+<th align="left">Use-case
+
+<tr>
+<td align="left">2025
+<td align="left">Direct
+<td align="left">Singapore Government
+<td align="left"><a href="https://www.tech.gov.sg/">https://www.tech.gov.sg/</a>
+<td align="left">Employ OSCAL with requirements to <i>Add Specific Properties to a Set of Controls</i> and <i>Create Template SSPs for Distribution to Agencies</i>.
+
+<tr>
+<td align="left">2024
+<td align="left">Direct
+<td align="left">US Department of Veterans Affairs (VA)
+<td align="left"><a href="https://www.va.gov/">https://www.va.gov/</a>
+<td align="left">The uses VA uses trestle's capabilities to help automate their compliance documentation. Landmark achievement was submitting the first FedRAMP System Security Plan (SSP) in OSCAL format.
+
+<tr>
+<td align="left">2024?
+<td align="left">Direct
+<td align="left">Chicago Mercantile Exchange???
+<td align="left">https://www.cmegroup.com/
+<td align="left">?
+
+<tr>
+<td align="left">2023
+<td align="left">Direct
+<td align="left">SunStone Secure
+<td align="left"><a href="https://sunstonesecure.com/">https://sunstonesecure.com/</a>
+<td align="left">Sunstone Secure leverages OSCAL Compass to streamline and automate the complex process of achieving FedRAMP compliance, specifically through in their "Digital Twin Compliance Platform" and "Artemis" AI-native platform.
+
+<tr>
+<td align="left">2023
+<td align="left">Direct
+<td align="left">Red Hat
+<td align="left"><a href="https://www.redhat.com/">https://www.redhat.com/</a>
+<td align="left">Red Hat Product Security Team automate security and compliance for products, enabling generation of machine-readable System Security Plans (SSPs) and other compliance artifacts.
+
+<tr>
+<td align="left">2022
+<td align="left">Direct
+<td align="left">Center for Internet Security
+<td align="left"><a href="https://www.cisecurity.org/">https://www.cisecurity.org/</a>
+<td align="left">CIS is actively embracing OSCAL toward facilitating the automation of the CIS Controls catalog and the intricate mapping process for both users and product vendors.
+
+<tr>
+<td align="left">2021
+<td align="left">Direct
+<td align="left">RegSscale/GovReady
+<td align="left"><a href="https://regscale.com/">https://regscale.com/</a>
+<td align="left">GovReady uses the open-source trestle tool as a core component of its compliance-as-code platform to automate and streamline the process of meeting regulatory requirements.
+
+<tr>
+<td align="left">2021
+<td align="left">Direct
+<td align="left">IBM
+<td align="left"><a href="https://www.ibm.com/">https://www.ibm.com/</a>
+<td align="left">Used by IBM Concert, IBM Cloud, IBM Security and Compliance Center.
+
+</table>
 
 If your organization is using OSCAL Compass and would like to be included in this list, please open a pull request.