遵循以下最佳实践的项目将能够自愿的自我认证,并显示他们已经实现了核心基础设施计划(OpenSSF)徽章。 显示详细资料
[](https://www.bestpractices.dev/projects/4845)
<a href="https://www.bestpractices.dev/projects/4845"><img src="https://www.bestpractices.dev/projects/4845/badge"></a>
Go implementation of the OPAQUE asymmetric password-authenticated key exchange protocol.
The maturity, size, and reach of the project, as well as the fact that this repo does not present unique technology in itself and implements a protocol that exists outside of this repo, do not justify a bigger organisation than it currently has.
Copyright header in each source file.
SPDX-License-Identifier: MIT
Repository on GitHub, which uses git. git is distributed.
At this stage, this project does not define a roadmap in itself but follows the protocol's definition and advancements. These are usually developed and merged along with the spec, which has these tasks listed as issues to be addressed: https://github.com/cfrg/draft-irtf-cfrg-opaque.
Cf. Github security
Currently, everything is reviewed.
This is a package.
Uses the language's standard testing tool, https://golang.org/doc/tutorial/add-a-test
CI workflows can be found here: https://github.com/bytemare/opaque/tree/main/.github/workflows
The project contains tests intended to test as much code as possible and coverage is measured using Go's built-in coverage tool and CI coverage tools.
https://github.com serves all required security hardening headers.
The project integrates fuzz targets for its external API.
The project includes unit tests, coverage tests, tests edge-cases, and fuzzing.
后退