Package Manager Best Practices

Collection of security best practices documentation for various package managers

A project under the Best Practices for Open Source Developers WG.

Motivation / Objective

This project intends to create documents that cover the recommend way to use various package managers for optimum security.

Video introduction starts here

Scope

Documents for package managers, such as:

npm
Pip
RubyGems
etc.

Process

The procedure for proposing, reviewing, and publishing guideline documents is covered in process.md

Get Involved

See Best Practices for Open Source Developers WG for meetings/lists/slack/etc.

Name		Name	Last commit message	Last commit date
Latest commit History 51 Commits
.github		.github
draft		draft
published		published
review		review
LICENSE		LICENSE
README.md		README.md
process.md		process.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Package Manager Best Practices

Motivation / Objective

Scope

Process

Get Involved

About

Uh oh!

Releases

Packages

Uh oh!

Contributors 8

Uh oh!

License

ossf/package-manager-best-practices

Folders and files

Latest commit

History

Repository files navigation

Package Manager Best Practices

Motivation / Objective

Scope

Process

Get Involved

About

Resources

License

Code of conduct

Security policy

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors 8

Uh oh!

Packages