kuma

1
header:
2
  schema-version: '1.0.0'
3
  expiration-date: '2025-01-24T01:00:00.000Z'
4
  last-updated: '2024-01-24'
5
  last-reviewed: '2024-01-24'
6
  project-url: https://github.com/kumahq/kuma
7
  changelog: https://github.com/kumahq/kuma/blob/master/CHANGELOG.md
8
  license: https://github.com/kumahq/kuma/blob/master/LICENSE
9
project-lifecycle:
10
  status: active
11
  bug-fixes-only: false
12
  roadmap: https://github.com/kumahq/kuma/milestones
13
  core-maintainers:
14
    - github:Automaat
15
    - github:bartsmykla
16
    - github:lahabana
17
    - github:jakubdyszkiewicz
18
    - github:lobkovilya
19
    - github:lukidzi
20
    - github:michaelbeaumont
21
    - github:slonka
22
contribution-policy:
23
  accepts-pull-requests: true
24
  accepts-automated-pull-requests: true
25
  automated-tools-list:
26
    - automated-tool: dependabot
27
      action: allowed
28
      path:
29
        - /
30
  code-of-conduct: https://github.com/kumahq/kuma/blob/master/CODE_OF_CONDUCT.md
31
dependencies:
32
  third-party-packages: true
33
  dependencies-lists:
34
    - https://github.com/kumahq/kuma/blob/master/go.mod
35
distribution-points:
36
  - https://github.com/kumahq/kuma/releases
37
  - https://download.konghq.com/kuma-binaries-release/
38
documentation:
39
  - https://kuma.io/docs/
40
security-contacts:
41
  - type: url
42
    value: https://github.com/kumahq/kuma/security/advisories
43
security-testing:
44
- tool-type: sca
45
  tool-name: Dependabot
46
  tool-version: latest
47
  integration:
48
    ad-hoc: false
49
    ci: true
50
    before-release: true
51
- tool-type: sast
52
  tool-name: CodeQL
53
  tool-version: '3.23.1'
54
  integration:
55
    ad-hoc: false
56
    ci: true
57
    before-release: true
58
vulnerability-reporting:
59
  accepts-vulnerability-reports: true
60
  security-policy: https://github.com/kumahq/kuma/security/policy
61