Skip to content

Commit

Permalink
meeting notes: 2024-08-21
Browse files Browse the repository at this point in the history
  • Loading branch information
@TristanCacqueray @blackheaven
TristanCacqueray authored and blackheaven committed Aug 21, 2024
1 parent 2f34d8d commit 63faba2
Showing 1 changed file with 19 additions and 0 deletions.
19 changes: 19 additions & 0 deletions meeting-notes/2024-08-21.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,19 @@
# SRT meeting 2024-08-21

Previously:
https://github.com/haskell/security-advisories/blob/main/meeting-notes/2024-08-07

## Embargoed vulnerability work

We provided a fix and we are coordinating the disclosure.

## Call for Volunteers

Jose wrote a draft to be communicated soon.

## GitHub Action cabal-audit scan

* Gautier has a minimal working version [GitHub Action](https://github.com/blackheaven/haskell-security-action)
* Some example: [here](https://github.com/blackheaven/vulnerable-sandbox/security/code-scanning/1)
* He made a [RFC](https://discourse.haskell.org/t/request-for-comments-github-haskell-security-action/10191)
* After discussing with MangoIV, Gautier will upstream the sarif file generation in `cabal-audit`

0 comments on commit 63faba2

Please sign in to comment.