{"id":13538644,"url":"https://github.com/nodejs/security-wg","last_synced_at":"2025-04-14T08:57:51.713Z","repository":{"id":13838784,"uuid":"75093520","full_name":"nodejs/security-wg","owner":"nodejs","description":"Node.js Ecosystem Security Working Group","archived":false,"fork":false,"pushed_at":"2025-04-06T21:00:06.000Z","size":2640,"stargazers_count":521,"open_issues_count":24,"forks_count":128,"subscribers_count":66,"default_branch":"main","last_synced_at":"2025-04-12T01:25:46.086Z","etag":null,"topics":["node","nodejs"],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/nodejs.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":"GOVERNANCE.md","roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2016-11-29T15:16:52.000Z","updated_at":"2025-04-10T15:54:55.000Z","dependencies_parsed_at":"2024-03-13T02:23:28.157Z","dependency_job_id":"d3bf3ea6-a3d5-4104-bf80-9baf66a413d9","html_url":"https://github.com/nodejs/security-wg","commit_stats":{"total_commits":750,"total_committers":78,"mean_commits":9.615384615384615,"dds":0.7466666666666666,"last_synced_commit":"26cf94dd6bd22393449e1fbf2dcf975fd71cb82c"},"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nodejs%2Fsecurity-wg","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nodejs%2Fsecurity-wg/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nodejs%2Fsecurity-wg/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nodejs%2Fsecurity-wg/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/nodejs","download_url":"https://codeload.github.com/nodejs/security-wg/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248852124,"owners_count":21171839,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["node","nodejs"],"created_at":"2024-08-01T09:01:14.474Z","updated_at":"2025-04-14T08:57:51.692Z","avatar_url":"https://github.com/nodejs.png","language":"JavaScript","readme":"[![Node.js Security Team](https://img.shields.io/badge/Node.js-Security%20Team-green.svg)]()\n[![Security Meetings](https://img.shields.io/badge/YouTube-Security%20Meetings-red.svg)](  https://www.youtube.com/channel/UCQPYJluYC_sn_Qz_XE-YbTQ/search?query=Security+meeting)\n[![OpenJS Slack Invite](https://img.shields.io/badge/join%20slack%20on-nodejs--security--wg-green.svg)](https://slack-invite.openjsf.org/)\n[![OpenSSF scorecard](https://api.securityscorecards.dev/projects/github.com/nodejs/security-wg/badge)](https://api.securityscorecards.dev/projects/github.com/nodejs/security-wg)\n\n# Security Team\n\nTable of Contents\n\n- [Node.js Bug Bounty Program](#nodejs-bug-bounty-program)\n- [Current Initiatives](#current-initiatives)\n- [Current Project Team Members](#current-project-team-members)\n- [Emeritus Members](#emeritus-members)\n- [Code of Conduct](#code-of-conduct)\n- [Moderation Policy](#moderation-policy)\n\nThis team is _not_ responsible for managing or responding to\nsecurity reports against Node.js itself. That responsibility remains with\nthe [Node.js TSC][].\n\n## Node.js Bug Bounty Program\n\nThe program is managed through the HackerOne platform at [https://hackerone.com/nodejs](https://hackerone.com/nodejs) with further details.\n\n## Current Initiatives\n\n| Initiative           | Champion                                         | Status                                   | Links\n|----------------------|--------------------------------------------------|------------------------------------------|-------------------------------------------------\n| Automate Security release process | [@marco-ippolito](https://github.com/marco-ippolito) / [@RafaelGSS](https://github.com/RafaelGSS) | In Progress | [Issue #860](https://github.com/nodejs/security-wg/issues/860)\n| Node.js maintainers: Threat Model | Group effort | In Progress | [Issue #1333](https://github.com/nodejs/security-wg/issues/1333) |\n| Audit build process for dependencies | [@mhdawson](https://github.com/mhdawson) | TODO | [Issue #1037](https://github.com/nodejs/security-wg/issues/1037) |\n\n## Current Project Team Members\n\n* [fraxken](https://github.com/fraxken) - **Thomas Gentilhomme**\n* [marco-ippolito](https://github.com/marco-ippolito) - **Marco Ippolito**\n* [mdawson](https://github.com/mdawson) - **Michael Dawson**\n* [RafaelGSS](https://github.com/RafaelGSS) - **Rafael Gonzaga**\n* [ulisesGascon](https://github.com/ulisesGascon) - **Ulises Gascon**\n\n## Emeritus Members\n\n* [ChALkeR](https://github.com/ChALkeR) - **Сковорода Никита Андреевич**\n* [DanielRuf](https://github.com/DanielRuf) - **Daniel Ruf**\n* [MarcinHoppe](https://github.com/MarcinHoppe) - **Marcin Hoppe**\n* [SomeoneWeird](https://github.com/SomeoneWeird) - **Adam Brady**\n* [aeleuterio](https://github.com/aeleuterio) **André Eleuterio**\n* [ashishkurmi](https://github.com/ashishkurmi) - **Ashish Kurmi**\n* [bengl](https://github.com/bengl) - **Bryan English**\n* [brycebaril](https://github.com/brycebaril) - **Bryce Baril**\n* [cjihrig](https://github.com/cjihrig) - **Colin Ihrig**\n* [deian](https://github.com/deian) - **Deian Stefan**\n* [dgonzalez](https://github.com/dgonzalez) - **David Gonzalez**\n* [digitalinfinity](https://github.com/digitalinfinity) - **Hitesh Kanwathirtha**\n* [dougwilson](https://github.com/dougwilson) - **Doug Wilson**\n* [drifkin](https://github.com/drifkin) - **Devon Rifkin**\n* [elexy](https://github.com/Elexy) - **Alex Knol**\n* [esarafianou](https://github.com/esarafianou) - **Eva Sarafianou**\n* [evilpacket](https://github.com/evilpacket) - **Adam Baldwin**\n* [gergelyke](https://github.com/gergelyke) - **Gergely Nemeth**\n* [gibfahn](https://github.com/gibfahn) - **Gibson Fahnestock**\n* [grnd](https://github.com/grnd) - **Danny Grander**\n* [jasnell](https://github.com/jasnell) - **James M Snell**\n* [jbergstroem](https://github.com/jbergstroem) - **Johan Bergström**\n* [joshgav](https://github.com/joshgav) - **Josh Gavant**\n* [karenyavine](https://github.com/karenyavine) **Karen Yavine Shemesh**\n* [lirantal](https://github.com/lirantal) - **Liran Tal**\n* [mcollina](https://github.com/mcollina) - **Matteo Collina**\n* [mgalexander](https://github.com/mgalexander) - **Michael Alexander**\n* [ofrobots](https://github.com/ofrobots) - **Ali Ijaz Sheikh**\n* [pxlpnk](https://github.com/pxlpnk) - **Andreas Tiefenthaler**\n* [roccomuso](https://github.com/roccomuso) - **Rocco Musolino**\n* [ronperris](https://github.com/ronperris) - **Ron Perris**\n* [sam-github](https://github.com/sam-github) - **Sam Roberts**\n* [shigeki](https://github.com/shigeki) - **Shigeki Ohtsu**\n* [vdeturckheim](https://github.com/vdeturckheim) - **Vladimir de Turckheim**\n\n# Code of Conduct\n\nThe [Node.js Code of Conduct](https://github.com/nodejs/admin/blob/master/CODE_OF_CONDUCT.md) applies to this team.\n\n# Moderation Policy\n\nThe [Node.js Moderation Policy](https://github.com/nodejs/admin/blob/master/Moderation-Policy.md) applies to this team.\n\n[Node.js TSC]: https://github.com/nodejs/TSC\n","funding_links":[],"categories":["JavaScript","\u003ca id=\"9eee96404f868f372a6cbc6769ccb7f8\"\u003e\u003c/a\u003e工具"],"sub_categories":["\u003ca id=\"31185b925d5152c7469b963809ceb22d\"\u003e\u003c/a\u003e新添加的"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnodejs%2Fsecurity-wg","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fnodejs%2Fsecurity-wg","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnodejs%2Fsecurity-wg/lists"}