nodejs / security-wg Public

Notifications You must be signed in to change notification settings
Fork 122
Star 504

Code
Issues 20
Pull requests 3
Actions
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Security
Insights

Issues: nodejs/security-wg

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

20 Open 491 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Assignee

Filter by who’s assigned

Assigned to nobody

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Issues list

OpenSSF Scorecard Report Updated!

#1416 opened Dec 19, 2024 by github-actions bot

Node.js Security team Meeting 2024-12-19

#1415 opened Dec 16, 2024 by mhdawson

Add a warning on EOL versions security-wg-agenda

#1401 opened Nov 19, 2024 by RafaelGSS

Script execution control on Linux

#1388 opened Sep 27, 2024 by l0kod

Discuss WDAC (code integrity on Windows)

#1364 opened Aug 21, 2024 by rdw-msft

Node.js maintainers: Threat Model never stale security-wg-agenda

#1333 opened Jun 20, 2024 by RafaelGSS

Ping TSC on deps update not from GithubBot good first issue stale

#1329 opened Jun 13, 2024 by marco-ippolito

Collaborators Inactivity Policy Review never stale

#1282 opened Apr 17, 2024 by marco-ippolito

Proposed approach for build steps in deps which are not in make node

#1236 opened Feb 22, 2024 by mhdawson

Requirement (Gold level): Secured delivery against man-in-the-middle (MITM) attacks CII-best-practices never stale

#1190 opened Jan 4, 2024 by UlisesGascon

Requirement (Gold level): Use basic good cryptographic practices never stale

#1189 opened Jan 4, 2024 by UlisesGascon

Requirement (Gold level): The project MUST have FLOSS automated test suite(s) that provide at least 80% branch and 90% statement coverage CII-best-practices never stale

#1188 opened Jan 4, 2024 by UlisesGascon

3 tasks

Requirement (Gold level): The project MUST include a license and copyright statement in each source file CII-best-practices never stale

#1187 opened Jan 4, 2024 by UlisesGascon

1 task

Have a SBOM for Node.js? never stale

#1115 opened Sep 20, 2023 by marco-ippolito

Audit build process for dependencies never stale security-wg-agenda

#1037 opened Jun 22, 2023 by mhdawson

4 of 24 tasks

Extend security reporting for LTS lines beyond their lifetimes

#1025 opened Jun 16, 2023 by bengl

Initiative for CII-Best-Practices for Nodejs Projects CII-best-practices never stale

#953 opened Apr 16, 2023 by UlisesGascon

3 of 7 tasks

Automate security release process never stale security-wg-agenda

#860 opened Jan 6, 2023 by RafaelGSS

Assessment against best practices (OpenSSF Scorecards ...) never stale

#859 opened Jan 6, 2023 by fraxken

Abort when vulnerable flag

#852 opened Dec 16, 2022 by RafaelGSS

ProTip! What’s not been updated in a month: updated:<2024-11-20.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly