Express.js Security WG Initiatives 2024
Opened this issue ยท 0 comments
UlisesGascon commented
Since this group is starting, here we can consolidate ideas and proposals for initiatives to run on 2024. ๐
Ideas
- Support initiatives from the OpenSSF Best Practices for Open Source Developers Working Group. Suggested by @ctcpip in this comment
- Support Allstar initiative. Suggested by @ctcpip in this comment
- Add a Security Guidelines for Express community middleware. Suggested by @UlisesGascon
- Handle security releases in private using a private fork (scenarios like update libraries + express and so on). Suggested by @wesleytodd
Please, add your ideas as comments to this issue or react to the existing ones.