Adopt OSSF Security Insights 1.0 specification

OSSF Security Insights 1.0 specification was recently-ish announced. It defines a standard YAML file to declare a project's security processes

## Adopting this specification

#todo: How exactly would LoopBack adopt this specification?

### Existing implementations

- Jaegar ([PR](https://github.com/jaegertracing/jaeger/pull/4872), [file](https://github.com/jaegertracing/jaeger/blob/7aeb457c21eed28b58cd34021eff14727229aa69/SECURITY-INSIGHTS.yml))

## Comparisons

#todo: Add comparisons between similar standards such as:

- [Security.txt](https://github.com/securitytxt/security-txt)
- [security-README](https://github.com/Trewaters/security-README)
- [OpenSSF Project Security Information Specification](https://github.com/loopbackio/security/issues/24)
- others?

## References
- https://openssf.org/blog/2023/10/11/openssf-introduces-the-specification-security-insights-1-0/
- https://github.com/ossf/security-insights-spec

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Adopt OSSF Security Insights 1.0 specification #37

Adopting this specification

Existing implementations

Comparisons

References

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Adopt OSSF Security Insights 1.0 specification #37

Description

Adopting this specification

Existing implementations

Comparisons

References

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions