Skip to content

Node.js Ecosystem Security Working Group

License

Notifications You must be signed in to change notification settings

nodejs/security-wg

Repository files navigation

Node.js Security Team Security Meetings OpenJS Slack Invite OpenSSF scorecard

Security Team

Table of Contents

This team is not responsible for managing or responding to security reports against Node.js itself. That responsibility remains with the Node.js TSC.

Node.js Bug Bounty Program

The program is managed through the HackerOne platform at https://hackerone.com/nodejs with further details.

Current Initiatives

Initiative Champion Status Links
Automate Security release process @marco-ippolito / @RafaelGSS In Progress Issue #860
Node.js maintainers: Threat Model Group effort In Progress Issue #1333
Audit build process for dependencies @mhdawson TODO Issue #1037

Current Project Team Members

Emeritus Members

Code of Conduct

The Node.js Code of Conduct applies to this team.

Moderation Policy

The Node.js Moderation Policy applies to this team.

About

Node.js Ecosystem Security Working Group

Topics

Resources

License

Code of conduct

Security policy

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published