Resources

Previous Page: « Checklist Next Page: Contents »

Guides

• EEF CVE Numbering Authority - Primary CVE authority for Hex.pm packages
• OpenSSF Guide to implementing a coordinated vulnerability disclosure process for open source projects
• GitHub Privately reporting a security vulnerability
• GitHub Managing privately reported security vulnerabilities
• Publishing a CVE - for projects outside EEF CNA scope
• Hex Package Retire
• Rebar Package Retire

Vulnerability Database

• GitHub Hex Advisories
• CVE Details
• OSV Database

Previous Page: « Checklist Next Page: Contents »