Container-Security-Verification-Standard issues

Results 3 Container-Security-Verification-Standard issues

Sort by recently updated

Include `security.txt` requirement

Would it make sense to include a requirement concerning `security.txt` labelling in images? Some organisations already do this such as [Atlassian](https://hub.docker.com/layers/atlassian/jira-software/8.21.0-EAP01/images/sha256-86051be29383e24f7fe28951780765f4667943ae8314b5e1cfea64ccad1da0ba?context=explore). ``` LABEL securitytxt=https://www.atlassian.com/.well-known/security.txt ``` This might fit into the...

EdOverflow

Related projects and controls

Containers are part of a software supply chain. Because of that, I see some overlap in some of the areas of concern outlined in [Component Analysis](https://www.owasp.org/index.php/Component_Analysis). There's also an incubating...

stevespringett

Move redguard to sponsor section and rebrand as OWASP

If this is an OWASP project, the adoption of it would likely benefit tremendously if it were rebranded with OWASP logo, etc. Similar to ASVS, M-ASVS, and SCVS. I am...

stevespringett

Container-Security-Verification-Standard
Container-Security-Verification-Standard copied to clipboard

Metadata

Include `security.txt` requirement

Related projects and controls

Move redguard to sponsor section and rebrand as OWASP

← Metadata

Owner

Metadata

Container-Security-Verification-Standard Container-Security-Verification-Standard copied to clipboard

Metadata

Include `security.txt` requirement

Related projects and controls

Move redguard to sponsor section and rebrand as OWASP

← Metadata

Owner

Metadata

Container-Security-Verification-Standard
Container-Security-Verification-Standard copied to clipboard