Skip to content
This repository has been archived by the owner on Oct 9, 2023. It is now read-only.

Collection of security best practices for package managers.

License

Notifications You must be signed in to change notification settings

ossf/package-manager-best-practices

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

51 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Package Manager Best Practices

Collection of security best practices documentation for various package managers

A project under the Best Practices for Open Source Developers WG.

Motivation / Objective

This project intends to create documents that cover the recommend way to use various package managers for optimum security.

Video introduction starts here

Scope

Documents for package managers, such as:

  • npm
  • Pip
  • RubyGems
  • etc.

Process

The procedure for proposing, reviewing, and publishing guideline documents is covered in process.md

Get Involved

About

Collection of security best practices for package managers.

Resources

License

Code of conduct

Security policy

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published