File: SECURITY-INSIGHTS.yml

package info (click to toggle)
wasmedge 0.14.1%2Bdfsg-3.1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 14,416 kB
  • sloc: cpp: 133,450; asm: 26,333; ansic: 12,397; java: 2,553; sh: 2,086; javascript: 1,440; python: 1,330; pascal: 897; xml: 681; makefile: 100
file content (69 lines) | stat: -rw-r--r-- 2,187 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
 
header:
  schema-version: 0.13.4
  last-updated: '2023-09-05'
  last-reviewed: '2023-09-05'
  expiration-date: '2024-09-05T01:00:00.000Z'
  project-url: https://github.com/WasmEdge/WasmEdge
  project-release: '0.13.4'
project-lifecycle:
  status: active
  roadmap: https://github.com/WasmEdge/WasmEdge/blob/master/docs/ROADMAP.md
  bug-fixes-only: false
  core-maintainers:
  - github:juntao
  - github:hydai
  - github:q82419
  - github:ibmibmibm
contribution-policy:
  accepts-pull-requests: true
  accepts-automated-pull-requests: true
  automated-tools-list:
  - automated-tool: misc linters
    action: denied
    path:
    - .github/linters
  code-of-conduct: https://github.com/WasmEdge/WasmEdge/blob/master/docs/CODE_OF_CONDUCT.md
documentation:
- https://github.com/WasmEdge/WasmEdge/blob/master/README.md
distribution-points:
- https://github.com/WasmEdge/WasmEdge/releases
security-artifacts:
  threat-model:
    threat-model-created: true
    evidence-url:
    - https://github.com/WasmEdge/WasmEdge/blob/master/SECURITY.md
security-testing:
- tool-type: sca
  tool-name: Dependabot
  tool-version: latest
  integration:
    ad-hoc: false
    ci: true
    before-release: true
  comment: |
    Dependabot is enabled for this repo.
- tool-type: sca
  tool-name: Google OSS Fuzz
  tool-version: latest
  tool-url: https://github.com/google/oss-fuzz/tree/master/projects/wasmedge
  integration:
    ad-hoc: false
    ci: true
    before-release: true
security-contacts:
- type: email
  value: security@secondstate.io
vulnerability-reporting:
  accepts-vulnerability-reports: true
  security-policy: https://github.com/WasmEdge/WasmEdge/blob/master/SECURITY.md
  email-contact: security@secondstate.io
  comment: |
    You will receive an acknowledgement mail within 24 hours. After that, we will give a detailed response about the subsequent process within 48 hours.
dependencies:
  third-party-packages: true
  dependencies-lists:
  - https://github.com/WasmEdge/WasmEdge/tree/master/thirdparty
  env-dependencies-policy:
    policy-url: https://github.com/WasmEdge/WasmEdge/blob/master/SECURITY.md
    comment: |
      You will receive an acknowledgement mail within 24 hours