Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Review dependencies, and guidelines to approving dependabot updates #308

Open
prabhpreet opened this issue May 10, 2024 · 0 comments
Open

Review dependencies, and guidelines to approving dependabot updates #308

prabhpreet opened this issue May 10, 2024 · 0 comments
Labels
client-security Security of the Rust Rosenpass implementation maintenance Part of maintenance activities

Comments

@prabhpreet
Copy link
Contributor

prabhpreet commented May 10, 2024
edited

Conduct a security review of dependencies

Try to create guidelines on approving dependabot updates, instead of doing it willy nilly

Crates that come to mind:

memsec
zerocopy
base64ct
@prabhpreet prabhpreet added client-security Security of the Rust Rosenpass implementation maintenance Part of maintenance activities labels May 10, 2024
@prabhpreet prabhpreet changed the title Review dependencies and state of security Review dependencies, and guidelines to approving dependabot updates May 10, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
client-security Security of the Rust Rosenpass implementation maintenance Part of maintenance activities
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@prabhpreet