Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/ossf/package-manager-best-practices

Collection of security best practices for package managers.
https://github.com/ossf/package-manager-best-practices

Last synced: 4 days ago
JSON representation

Collection of security best practices for package managers.

Awesome Lists containing this project

README

        

# **Package Manager Best Practices**

Collection of security best practices documentation for various package
managers

A project under the [Best Practices for Open Source Developers
WG](https://github.com/ossf/wg-best-practices-os-developers).

## **Motivation** / **Objective**

This project intends to create documents that cover the recommend way to use
various package managers for optimum security.

[Video introduction starts here](https://youtu.be/b7p8U6H2jcI?t=2396)

## **Scope**

Documents for package managers, such as:

* npm
* Pip
* RubyGems
* etc.

## **Process**

The procedure for proposing, reviewing, and publishing guideline documents is covered in [process.md](process.md)

# **Get Involved**

* See [Best Practices for Open Source Developers WG](https://github.com/ossf/wg-best-practices-os-developers) for meetings/lists/slack/etc.