Skip to content

Expand Security guidance to cover supply chain issues #104

Open
Open
Expand Security guidance to cover supply chain issues#104
Milestone
2.1.0
@jeffpaul

Description

@jeffpaul
jeffpaul
opened on Sep 17, 2025

Our security best practice should mention modern supply chain tools. Please:

  • Add references to Dependabot / npm audit / Composer audit equivalents.
  • Note why these tools matter for open source maintainers.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    Open Source Practice
    Status
    Incoming

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions