ossf/wg-best-practices-os-developers issues and pull requests

#945 - adding CWE-209

Pull Request - State: open - Opened by s19110 16 days ago

#944 - pySCG pillar 664 base 409

Pull Request - State: open - Opened by myteron 16 days ago
Labels: Product: Python Hardening Guide

#940 - CWE-1095: show that list modification is dangerous

Pull Request - State: closed - Opened by hedrok 21 days ago
Labels: Product: Python Hardening Guide

#894 - pySCG: avoid mixup with MITRE CWE numbers+title

Issue - State: open - Opened by myteron 2 months ago
Labels: Product: Python Hardening Guide

#893 - adding CWE-459

Pull Request - State: open - Opened by dwiley258 2 months ago
Labels: Product: Python Hardening Guide

#892 - Add links to Japanese labs on README.md

Pull Request - State: closed - Opened by Muuhh-CTJ 2 months ago - 1 comment

#891 - Japanese translation of introduction.md

Pull Request - State: closed - Opened by Muuhh-CTJ 2 months ago - 1 comment
Labels: Japanese

#890 - Tweak Salve's name per request in PR 885

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago - 1 comment

#889 - ja_handling-errors.html: Translate labs/handling-errors into Japanese

Pull Request - State: closed - Opened by shimos 3 months ago - 1 comment
Labels: Japanese

#888 - Japanese translation of oob1

Pull Request - State: closed - Opened by Muuhh-CTJ 3 months ago - 2 comments
Labels: Japanese

#887 - Japanese translation of regex1

Pull Request - State: closed - Opened by Muuhh-CTJ 3 months ago - 1 comment
Labels: Japanese

#886 - pySCG: adding 843 as part of #531

Pull Request - State: closed - Opened by s19110 3 months ago
Labels: Product: Python Hardening Guide

#885 - Add credit for Salve J. Nilsen

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago - 1 comment

#884 - Add more discussion with a Python 2->3 example

Pull Request - State: open - Opened by david-a-wheeler 3 months ago

#883 - In "Simplifying" add links at top to key sections

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago

#882 - Consider `-Wstringop-overflow`, `-Wno-stringop-overread`, and `-Wno-stringop-truncation` for C and C++ Compiler Hardening Guide

Issue - State: open - Opened by thomasnyman 3 months ago
Labels: Product: Compiler Hardening Guide, Enhancement

#881 - Add detailed description of GCC access attributes to Compiler Annotations Guide

Pull Request - State: open - Opened by thomasnyman 3 months ago
Labels: Product: Compiler Annotations Guide

#880 - Changing to a more restrictive license has negative consequences

Pull Request - State: open - Opened by david-a-wheeler 3 months ago - 1 comment

#879 - pySCG: addign 2nd 1335 rule doc and code

Pull Request - State: closed - Opened by myteron 3 months ago
Labels: Product: Python Hardening Guide

#878 - docs: list swedish translation team

Pull Request - State: open - Opened by janderssonse 3 months ago

#877 - Python also made changes, let's note that

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago

#876 - Fix typos

Pull Request - State: open - Opened by szepeviktor 3 months ago

#875 - Improve explanation of Python \z situation

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago

#874 - Add a "consider" line for users

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago - 1 comment

#873 - Concise Evaluation Guide: Split recommendation in two separate ones

Pull Request - State: closed - Opened by gkunz 3 months ago - 3 comments

#872 - Correct a typo in oob1.html

Pull Request - State: closed - Opened by Muuhh-CTJ 3 months ago - 1 comment

#871 - Japanese translation of regex0

Pull Request - State: closed - Opened by Muuhh-CTJ 3 months ago - 3 comments

#870 - Improve text about avoiding forks

Pull Request - State: open - Opened by david-a-wheeler 3 months ago

#869 - Add status of adding \A and \z to all platforms

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago - 1 comment

#868 - pySCG: adding 838 as part of #531

Pull Request - State: closed - Opened by myteron 3 months ago - 1 comment
Labels: Product: Python Hardening Guide

#867 - docs: add initial swedish translation for concise guide to evaluating oss

Pull Request - State: open - Opened by janderssonse 3 months ago - 3 comments
Labels: Product: Concise Guides, Swedish

#866 - Make language more direct

Pull Request - State: closed - Opened by funnelfiasco 3 months ago

#865 - Embolden website text

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago - 2 comments

#864 - Listing the Simplifying Software Component Updates guide

Pull Request - State: closed - Opened by gkunz 3 months ago - 1 comment

#863 - 📝 italic -> bold

Pull Request - State: closed - Opened by ctcpip 3 months ago

#862 - pySCG 180 adding cv einfo

Pull Request - State: closed - Opened by myteron 3 months ago
Labels: Product: Python Hardening Guide

#861 - Add Simplifying-Software-Component-Updates (fixes #813)

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago - 3 comments

#860 - ja_csp1.html: Add Japanese translation for labs/csp1

Pull Request - State: closed - Opened by shimos 3 months ago - 1 comment

#859 - Add "Correctly Using RE" to best.openssf.org index

Pull Request - State: closed - Opened by david-a-wheeler 3 months ago

#858 - pySCG: adding 778 to main readme.md

Pull Request - State: closed - Opened by myteron 3 months ago
Labels: Product: Python Hardening Guide

#857 - Consider `-fzero-init-padding-bits=all` for C and C++ Compiler Hardening Guide

Issue - State: open - Opened by thomasnyman 4 months ago - 2 comments
Labels: good first issue, Product: Compiler Hardening Guide, Enhancement

#856 - Fix README on EDU SIG and BP Badge

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago

#855 - ja_input2.html: Translate labs/input2 into Japanese

Pull Request - State: closed - Opened by shimos 4 months ago - 6 comments
Labels: Product: Labs, Japanese

#854 - Suggest consulting other guides. Fixes #852

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago - 4 comments
Labels: Product: Concise Guides

#853 - Clarify inappropriate use text in concise guide for evaluating secure software

Issue - State: closed - Opened by david-a-wheeler 4 months ago - 6 comments
Labels: Product: Concise Guides

#852 - Modify concise guide to refer to our other guides

Issue - State: closed - Opened by david-a-wheeler 4 months ago
Labels: Product: Concise Guides, Product: Guidelines

#851 - Add links from Compiler Options Hardening guide to Concise guides

Pull Request - State: open - Opened by david-a-wheeler 4 months ago - 1 comment
Labels: Product: Compiler Hardening Guide

#850 - Bump date for Compiler Options Hardening Guide for C and C++

Pull Request - State: closed - Opened by thomasnyman 4 months ago

#849 - pySCG: Organize rules (CWE base||class||variant) in book sections instead of CWE Pillars

Issue - State: open - Opened by myteron 4 months ago
Labels: Product: Python Hardening Guide

#848 - Fixes issue #839

Pull Request - State: closed - Opened by tommcd 4 months ago - 1 comment
Labels: Product: Python Hardening Guide

#847 - pySCG adding CWE-182

Pull Request - State: closed - Opened by myteron 4 months ago - 2 comments
Labels: Product: Python Hardening Guide

#846 - pySCG 707 180 2 GitHub

Pull Request - State: closed - Opened by myteron 4 months ago - 2 comments
Labels: Product: Python Hardening Guide

#845 - pySCG README filename typo fix CWE-390

Pull Request - State: closed - Opened by myteron 4 months ago - 1 comment
Labels: Product: Python Hardening Guide, bug

#844 - CWE-778 Insufficient Logging, updating Readme and code files.

Pull Request - State: closed - Opened by andrew-costello 4 months ago - 1 comment
Labels: Product: Python Hardening Guide

#843 - Typo and misc fixes

Pull Request - State: closed - Opened by dluco 4 months ago
Labels: Product: Compiler Hardening Guide

#842 - CWE-754 - Improper Check for Unusual or Exceptional Conditions - Float

Pull Request - State: closed - Opened by BartKaras1128 4 months ago - 1 comment
Labels: Product: Python Hardening Guide

#841 - Add SPP hints

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago

#840 - Bump date for Compiler Options Hardening Guide for C and C++

Pull Request - State: closed - Opened by thomasnyman 4 months ago
Labels: Product: Compiler Hardening Guide

#839 - pySCG: Fix broken internal and external links in Secure-Coding-Guide-for-Python

Issue - State: open - Opened by tommcd 4 months ago
Labels: Product: Python Hardening Guide, bug

#838 - pySCG bugfix for CWE-191 as per #835

Pull Request - State: closed - Opened by myteron 4 months ago - 1 comment
Labels: Product: Python Hardening Guide

#837 - Add clarifications on AArch64 PAC and BTI

Pull Request - State: closed - Opened by ionut-arm 4 months ago
Labels: Product: Compiler Hardening Guide

#836 - add 2025 meeting minutes link

Pull Request - State: closed - Opened by ctcpip 4 months ago

#835 - pySCG: BUG in CWE-191, lambda is not adding hours but every time.localtime() type including year, day etc

Issue - State: open - Opened by myteron 4 months ago
Labels: Product: Python Hardening Guide

#834 - pySCG: investigate and recommend a list of static code analysis tools

Issue - State: open - Opened by myteron 4 months ago
Labels: helpwanted, Product: Python Hardening Guide

#833 - Updating links to the 2025 meeting notes

Pull Request - State: closed - Opened by gkunz 4 months ago

#832 - docs: restructure concise evaluating guide, add terminology list

Pull Request - State: closed - Opened by janderssonse 4 months ago - 30 comments
Labels: Product: Concise Guides

#831 - Add link from best.openssf.org to SPP

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago - 1 comment

#830 - SPP: Fix minor error

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago

#829 - Clean up SPP documentation

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago - 1 comment

#828 - Add missing closing parenthesis

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago
Labels: Product: Compiler Hardening Guide

#827 - Release of The Memory Safety Continuum

Pull Request - State: closed - Opened by balteravishay 4 months ago - 1 comment
Labels: Product: Memory Safety Continuum

#826 - Bump date for Compiler Options Hardening Guide for C and C++

Pull Request - State: closed - Opened by thomasnyman 4 months ago

#825 - Make draft in Compiler Annotations Guide notice consistent with Secure Coding Guide for Python

Pull Request - State: closed - Opened by thomasnyman 4 months ago
Labels: Product: Compiler Annotations Guide

#824 - Bump date for Compiler Options Hardening Guide for C and C++

Pull Request - State: closed - Opened by thomasnyman 4 months ago
Labels: Product: Compiler Hardening Guide

#823 - Add citation of survey of C/C++ hardening flags

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago - 2 comments
Labels: Product: Compiler Hardening Guide

#822 - Add a citation that hardening options actually work

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago
Labels: Product: Compiler Hardening Guide

#821 - Reorg front of Compiler Options Hardening Guide for clarity

Pull Request - State: closed - Opened by david-a-wheeler 4 months ago - 3 comments
Labels: Product: Compiler Hardening Guide

#820 - pySCG: adding documentation to CWE-184 as part of #531

Pull Request - State: closed - Opened by myteron 4 months ago - 1 comment
Labels: Product: Python Hardening Guide

#819 - The `-Wconversion` warning in the Compiler Options Hardening Guide should come with a caveat for brown-field projects

Issue - State: open - Opened by thomasnyman 4 months ago
Labels: good first issue, Product: Compiler Hardening Guide

GitHub / ossf/wg-best-practices-os-developers issues and pull requests