WARNING: THIS SITE IS A MIRROR OF GITHUB.COM / IT CANNOT LOGIN OR REGISTER ACCOUNTS / THE CONTENTS ARE PROVIDED AS-IS / THIS SITE ASSUMES NO RESPONSIBILITY FOR ANY DISPLAYED CONTENT OR LINKS / IF YOU FOUND SOMETHING MAY NOT GOOD FOR EVERYONE, CONTACT ADMIN AT ilovescratch@foxmail.com
Skip to content

Security: nvm-sh/nvm

Security

Report a vulnerability

.github/SECURITY.md

Security

Please file a private vulnerability report via GitHub, email @ljharb, or see https://tidelift.com/security if you have a potential security vulnerability to report.

OpenSSF CII Best Practices

CII Best Practices

There are three “tiers”: passing, silver, and gold.

Passing

We meet 100% of the “passing” criteria.

Silver

We meet 100% of the “silver” criteria.

Gold

We meet 78% of the “gold” criteria. The gaps are as follows:

  • because we only have one maintainer, the project has no way to continue if that maintainer stops being active.
  • We do not include a copyright or license statement in each source file. Efforts are underway to change this archaic practice into a suggestion instead of a hard requirement.

Threat Model

See THREAT_MODEL.md.

Incident Response Plan

Please see our Incident Response Plan.

There aren’t any published security advisories