|
|
|
|
|
|
by Jarred
1399 days ago
|
|
|
> 1. Will Oven adopt a security policy for Bun? (https://github.com/oven-sh/bun/security) Yes. > 2. What measures is Oven taking to proactively detect and mitigate vulnerabilities? (e.g.: fuzzing, audits, bug bounties) Fuzzing will begin soon. Regular security audits will happen around the 1.0 release. Bug bounty seems like a good idea, but it's too early today to know when this will start. > 3. Will Oven support Zig development to avoid an existential risk in upstream vulnerabilities? Yes. Oven will donate to Zig Software Foundation. More broadly - I think about all of this a lot, but until now Bun has been mostly the work of just me. Bun is still very early - there's a lot that's just not implemented yet. |
|
|
I look forward to seeing what you can make of it with Oven.