dapr
/
docs
mirror of https://github.com/dapr/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'v1.11' into document-bindings-direction-3541

This commit is contained in:
Artur Souza 2023-06-29 12:34:35 -07:00 committed by GitHub
parent 85a59ea8e6 79f0854e0b
commit d6883bb089
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 16 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
daprdocs/content/en/concepts/security-concept.md
View File

@ -211,6 +211,21 @@ The Dapr threat model is below.
## Security audit ## Security audit
### June 2023
In June 2023, Dapr completed a fuzzing audit done by Ada Logics.
The audit achieved the following:
- OSS-Fuzz integration
- 39 new fuzzers for Dapr
- Fuzz test coverage for Dapr Runtime, Kit and Components-contrib
- All fuzzers running continuously after the audit has completed
You can find the full report [here](/docs/Dapr-june-2023-fuzzing-audit-report.pdf).
3 issues were found during the audit.
### February 2021 ### February 2021
In February 2021, Dapr went through a 2nd security audit targeting its 1.0 release by Cure53. In February 2021, Dapr went through a 2nd security audit targeting its 1.0 release by Cure53.
@ -255,4 +270,4 @@ Visit [this page]({{< ref support-security-issues.md >}}) to report a security i
## Related links ## Related links
[Operational Security]({{< ref "security.md" >}}) [Operational Security]({{< ref "security.md" >}})

BIN
daprdocs/static/docs/Dapr-june-2023-fuzzing-audit-report.pdf Normal file
View File

Binary file not shown.