loopbackio security issues

loopbackio / security

[WORK IN PROGRESS] A centralised repository for all security-related matters on the LoopBack Project.

MIT License

4 stars 1 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Standards/specifications/guidance/recommendations to comply with

#40 achrinza opened 4 days ago
0
Review and align with OpenJSF's SBOM/C-SCRM recommendations

#39 achrinza opened 4 days ago
0
Migrate Github Protected Branch/Tag Rules rules to Github Repository Rules rulesets

#38 achrinza opened 1 year ago
0
Adopt OSSF Security Insights 1.0 specification

#37 achrinza opened 1 year ago
0
Provide additional details to OSV Schema

#36 achrinza opened 1 year ago
0
Replace Secvisogram with `csaf-validator-lib`

#35 achrinza opened 2 years ago
0
Generate SWID and CoSWID tags

#34 achrinza opened 2 years ago
0
Align with OpenSSF NPM Best Practices v1

#33 achrinza opened 2 years ago
0
Align with SLSA3+ for verifiable provenance

#32 achrinza opened 2 years ago
1
Track Implementation of NPM "RFC for linking packages to their source and build"

#31 achrinza opened 2 years ago
2
Ghosted on Security Report (LBSEC-20220806-1)

#30 mgabeler-lee-6rs closed 2 years ago
10
Align with FIRST Guidelines and Practices for Multi-Party Vulnerability Coordination and Disclosure

#29 achrinza opened 2 years ago
0
Restrict imported GitHub Actions to an allowlist

#28 achrinza opened 2 years ago
0
Pin GitHub Actions to Git commit hash

#27 achrinza opened 2 years ago
0
Adopt StepSecurity Harden Runner for GitHub Actions

#26 achrinza opened 2 years ago
0
Adopt OpenSSF Scorecards

#25 achrinza opened 2 years ago
0
Track potential adoption of OpenSSF Project Security Information Specification

#24 achrinza opened 2 years ago
0
Track adoption of potential OpenJSF Security Program

#23 achrinza opened 2 years ago
1
Formalise Vulnerability Response Process

#22 achrinza opened 2 years ago
1
Adopt OpenSSF Best Practices

#21 achrinza opened 2 years ago
1
Track Potential Adoption of NPM Audit Resolve / Counterclaim / Assertions

#20 achrinza opened 2 years ago
0
Provide visibility into dependency tree permutations

#19 achrinza opened 2 years ago
0
Enforce opt-in signed Git Commits and Tags

#18 achrinza opened 2 years ago
1
chore: add lockfile validation

#17 achrinza closed 2 years ago
0
Add lockfile validation

#16 achrinza opened 2 years ago
0
feat: add security team email key

#15 achrinza closed 2 years ago
0
Register `LBSEC-` prefix in OSV schema

#14 achrinza closed 2 years ago
3
feat: update last 3 advisories

#13 achrinza opened 2 years ago
1
Produce GitLab-format security advisories

#12 achrinza opened 2 years ago
0
feat(lbsa-20201130): update references, vendor

#11 achrinza closed 2 years ago
0
feat(lbsa-20201130/csaf): update product tree & status; feat: add CSAF 2.0 product tree generator

#10 achrinza closed 2 years ago
0
feat(lbsa-20201130): add affected versions for OSV

#9 achrinza closed 2 years ago
0
add OSV; update CSAF 2.0

#8 achrinza closed 2 years ago
0
Additional CSAF 2.0 Validation

#7 achrinza closed 2 years ago
0
chore: update license info

#6 achrinza closed 2 years ago
0
test: utilise Secvisogram for validation

#5 achrinza closed 2 years ago
0
docs: fix link to `validate-csaf20.ts`

#4 achrinza closed 2 years ago
0
Update NIST CPE Dictionary

#3 achrinza opened 2 years ago
1
ci: misc fixes

#2 achrinza closed 2 years ago
0
Configure Renovate

#1 renovate[bot] opened 2 years ago
0