Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Plugins in this Workspace Should Have a Mandatory SECURITY.md #599

Closed
tillmann-crabnebula opened this issue Sep 12, 2023 · 1 comment
Closed

Comments

@tillmann-crabnebula
Copy link
Contributor

During looking into the new plugin based structure for v2 I noticed that there is no threat model, security boundary assumptions and way to contact the original author or maintainer in a reasonable secure way.

I would propose to create a template for this file, apply it to existing plugins and once it has matured require it for all officially maintained plugins (aka all plugins in this workspace).

@denjell-crabnebula
Copy link

This is a fantastic idea. Can you make a template and start adding them in a PR?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
Status: 📬Proposal
Development

No branches or pull requests

3 participants