I’m looking for something similar to what ubuntu does at Security notices | Ubuntu
We’d like to run nixos for production workloads, and our compliance requirements dictate that we follow a stream of security advisories to ensure that our systems are properly patched.
So I’m trying to see if such a source exists in the community.
Thanks!
Hi,
Yes, the Announcements > Security category is the right place to find security advisories. But your post is not one, so I moved it from Announcements > Security to Development > Security.
And you can find all the nixpkgs security related changes by looking at the merged PRs with the 1.severity: security label, see Pull requests · NixOS/nixpkgs · GitHub
You forgot to mention nixpkgs security changes (@nixpkgssecuritychanges@social.gerbet.me) - Mastodon 