Skip to content

Security: OpenRadioss/devci_OpenRadioss

Security

SECURITY.md

Security

The OpenRadioss community takes the security of our product seriously, including source code repositories and release assets.

Reporting Vulnerabilities

Please do not report security vulnerabilities through public GitHub issues.

Instead, please report them to the OpenRadioss community manager at webmaster@openradioss.org.

When reporting, please include the following information:

  • Type of issue
  • Which source file or Third-party component is affected
  • Instructions to reproduce the issue
  • Impact of the issue, including how an attacker might exploit it

Please report other bugs in the Issues section of the OpenRadioss repository.

GitHub Account Recommendations

Use two-factor authentication (2FA) for your GitHub account when contributing to OpenRadioss.

You can find further information in the GitHub documentation:
Configuring two-factor authentication

Adding Third-Party Libraries to OpenRadioss

Third-party libraries may introduce security issues when provided as source code and/or binaries.

Contact the OpenRadioss community manager at webmaster@openradioss.org if you need to add a Third-party library to your development project.

When doing so, please indicate:

  • The source of the Third-party (website or repository)
  • The license attached to this Third-party

The OpenRadioss community will investigate the feasibility of adding this Third-party to OpenRadioss. If approved, the new Third-party will be added to the extlib directory.

There aren’t any published security advisories