Skip to content

Issues: nodejs/security-wg

Node.js Security Initiatives 2024
#1255 by RafaelGSS was closed May 23, 2024
Closed 16
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
23 Open 458 Closed
23 Open 458 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

dependabot suggesting pre-release update
#1271 opened Apr 2, 2024 by RafaelGSS updated Apr 16, 2024
1
Have a SBOM for Node.js? never-stale
#1115 opened Sep 20, 2023 by marco-ippolito updated Apr 19, 2024
19
Requirement (Silver level): Hardening mechanisms CII-best-practices never-stale
#1186 opened Jan 4, 2024 by UlisesGascon updated Apr 20, 2024
1 task
1
Collaborators Inactivity Policy Review
#1282 opened Apr 17, 2024 by marco-ippolito updated Apr 25, 2024
3
Can we have "unsecure" features in Node.js?
#1274 opened Apr 6, 2024 by aduh95 updated Apr 25, 2024
4
Assessment against best practices (OpenSSF Scorecards ...)
#859 opened Jan 6, 2023 by fraxken updated Apr 25, 2024
5
Handling * paths in --allow-fs-* flags discussion never-stale
#1116 opened Sep 22, 2023 by RafaelGSS updated May 1, 2024
4
Audit build process for dependencies never-stale security-wg-agenda
#1037 opened Jun 22, 2023 by mhdawson updated May 2, 2024
4 of 24 tasks
22
Permission Model adoption from Package Managers
#1300 opened May 1, 2024 by RafaelGSS updated May 2, 2024
3
Initiative for CII-Best-Practices for Nodejs Projects CII-best-practices
#953 opened Apr 16, 2023 by UlisesGascon updated May 7, 2024
3 of 7 tasks
@UlisesGascon
29
Proposed approach for build steps in deps which are not in make node
#1236 opened Feb 22, 2024 by mhdawson updated May 23, 2024
6
Security initiative in December 2023: fuzzing Nodejs: https://github.com/google/oss-fuzz/tree/master/projects/nodejs
#1159 opened Nov 23, 2023 by Amir-Montazery updated May 23, 2024
6
Automate security release process security-wg-agenda
#860 opened Jan 6, 2023 by RafaelGSS updated Jun 7, 2024
16
[Bug]:use pm2 and --experimental-permission, throw Error: Access to this API has been restricted
#1330 opened Jun 14, 2024 by skypesky updated Jun 15, 2024
Ping TSC on deps update not from GithubBot good first issue
#1329 opened Jun 13, 2024 by marco-ippolito updated Jun 20, 2024
1
10
Node.js maintainers: Threat Model never-stale security-wg-agenda
#1333 opened Jun 20, 2024 by RafaelGSS updated Jun 20, 2024
1
Requirement (Gold level): The project MUST have FLOSS automated test suite(s) that provide at least 80% branch and 90% statement coverage CII-best-practices
#1188 opened Jan 4, 2024 by UlisesGascon updated Jul 4, 2024
3 tasks
2
OpenSSF Scorecard Report Updated!
#1340 opened Jul 4, 2024 by github-actions bot updated Jul 4, 2024
1
Requirement (Gold level): Secured delivery against man-in-the-middle (MITM) attacks CII-best-practices
#1190 opened Jan 4, 2024 by UlisesGascon updated Jul 6, 2024
3
Requirement (Gold level): The project MUST include a license and copyright statement in each source file CII-best-practices
#1187 opened Jan 4, 2024 by UlisesGascon updated Jul 6, 2024
1 task
3
Security Mailing List
#1343 opened Jul 7, 2024 by RedYetiDev updated Jul 7, 2024
4
Requirement (Gold level): Use basic good cryptographic practices
#1189 opened Jan 4, 2024 by UlisesGascon updated Jul 8, 2024
4
Node.js Security team Meeting 2024-07-18
#1348 opened Jul 15, 2024 by mhdawson updated Jul 15, 2024
@mhdawson
ProTip! no:milestone will show everything without a milestone.