Develop & Publish Security Review Guidelines - Githubissues

shapeshift / security

Issue and discussion tracking for the Security Workstream.

1 stars 0 forks source link

Develop & Publish Security Review Guidelines #17

Closed mrnerdhair closed 2 years ago

mrnerdhair commented 2 years ago

People need to be able to know ahead of time what sorts of things Security requires strict scrutiny for. AC:

Develop and publish guidelines indicating when strict scrutiny is required.
Include procedures for requesting and scheduling security reviews.

Strict scruitiny will be required for at least:

Snippets (better definition needed)
Smart contracts
Anything that adds an on-chain address anywhere (clarify)