From 76fc368b72254cc3775bd1a24be01379150dd536 Mon Sep 17 00:00:00 2001 From: Jonathan Leitschuh Date: Wed, 17 May 2023 15:13:08 -0400 Subject: [PATCH] Create repository_vulnerability_disclosure_policy.csv Signed-off-by: Jonathan Leitschuh --- .../repository_vulnerability_disclosure_policy.csv | 14 ++++++++++++++ 1 file changed, 14 insertions(+) create mode 100644 great_repository_audit/repository_vulnerability_disclosure_policy.csv diff --git a/great_repository_audit/repository_vulnerability_disclosure_policy.csv b/great_repository_audit/repository_vulnerability_disclosure_policy.csv new file mode 100644 index 0000000..83559eb --- /dev/null +++ b/great_repository_audit/repository_vulnerability_disclosure_policy.csv @@ -0,0 +1,14 @@ +Company,Package Ecosystem,Language(s),Safe Harbor,Disclosure Policy,Email +GitHub,NPM,"Javascript, Typescript",Yes,https://bounty.github.com/, +Gradle,Gradle Plugin Portal,"Gradle Plugins: Java, Kotlin, Scala",Yes,https://github.com/gradle/gradle/security/policy,security@gradle.com +JFrog,ConanCenter,C/C++,Partial,https://hackerone.com/jfrog, +Sonatype,Maven Central,"Java, Kotlin, Scala",No,https://help.sonatype.com/repomanager3/product-information/repository-security-vulnerabilities,security@sonatype.com +Ruby,Ruby Gems,Ruby,No,https://rubygems.org/pages/security,security@rubygems.org +,PyPy,Python,No,https://www.python.org/dev/security/,security@python.org +,GoLang,Go,No,https://go.dev/security/policy,security@golang.org +,Drupal,PHP,No,https://www.drupal.org/docs/develop/issues/issue-procedures-and-etiquette/reporting-a-security-issue,security@drupal.org +,Cargo,Rust,No,https://www.rust-lang.org/policies/security,security@rust-lang.org +Docker,Docker,Docker,No,https://www.docker.com/legal/security-and-privacy-guidelines/#:~:text=Reporting%20a%20Vulnerability,security@docker.com +Microsoft,Nuget,.Net,Unknown,None, +,Alire,Ada,Unknown,None, +,Packagist,PHP,Unknown,None,contact@packagist.org