Weblate/weblate
0
0
Fork 0
mirror of https://gh.wpcy.net/https://github.com/WeblateOrg/weblate.git synced 2026-04-26 06:14:35 +08:00
Code Issues Projects Releases Packages Activity Actions 4
weblate/docs/contributing/security.rst
Michal Čihař b668b9b910 docs: use abbr tag instead of doing that manually
2025-01-16 10:09:56 +01:00

48 lines
1.5 KiB
ReStructuredText
Raw Permalink Blame History

Security and privacy
====================
.. tip::
At Weblate, security maintains an environment that values the privacy of our users.
Development of Weblate adheres to the `Best Practices of the Linux Foundation's Core Infrastructure Initiative <https://www.bestpractices.dev/en/projects/552>`_.
.. seealso::
Discovered a security issue in Weblate? Please read :ref:`security`.
Security updates
----------------
Only the latest release is guaranteed to receive security updates.
Tracking dependencies for vulnerabilities
-----------------------------------------
Security issues in our dependencies are monitored using `Renovate`_. This
covers the Python and JavaScript libraries, and the latest stable release has
its dependencies updated to avoid vulnerabilities.
.. hint::
There might be vulnerabilities in third-party libraries which do not affect
Weblate, so those are not addressed by releasing bugfix versions of Weblate.
Docker container security
-------------------------
The Docker containers are regularly scanned using `Anchore`_ and `Trivy`_
security scanners.
This allows us to detect vulnerabilities early and release improvements quickly.
You can get the results of these scans at GitHub — they are stored as artifacts
on our CI as :abbr:`SARIF (Static Analysis Results Interchange Format)`.
.. seealso::
:ref:`ci-tests`
.. _Renovate: https://www.mend.io/renovate/
.. _Anchore: https://anchore.com/
.. _Trivy: https://github.com/aquasecurity/trivy
Reference in a new issue View git blame Copy permalink