dinit icon indicating copy to clipboard operation
dinit copied to clipboard
verified publisher icon davmac314

Security policy

Open mobin-2008 opened this issue 3 years ago • 1 comments

I know it's too early to do that. dinit is currently in version 0.15.1 and due to one of the design principles of dinit "Limited Feature Scope" it is very unlikely that we will encounter security vulnerabilities but again I think it is useful to consider a "Security policy" . Just specify how to report a security vulnerability (github issues would definitely be a bad idea. I personally recommend email)

This is a marginal issue right now, but I personally think it will be important in the future.

regards

mobin-2008 avatar Jun 19 '22 12:06 mobin-2008

I agree with the comment above anyway, this project needs audit, because in theory it may contains vulnerabilities

NullR3ference avatar Jul 14 '22 00:07 NullR3ference

I have added a document for now which asks that security issues be reported via email.

@AlexandrAlexeev7119 as this is open source anyone and everyone is free to audit the code for themselves.

davmac314 avatar Jan 06 '23 12:01 davmac314