![]() These advisories contain information about the affected project(s), the severity level of the vulnerability (on a 25-point scale) and how to mitigate the issues presented by the vulnerability. When a security update is released for any stable contributed module or release of Drupal core, the security team will issue a public advisory. Security updates aren’t effective without a proven way to get the word out about them, which is where the Drupal security advisory policy comes in. The security team is overseen by the Security Working Group, which is a much smaller group of security experts who work tirelessly to ensure Drupal core and the contributed module ecosystem provide best-in-class security. In short, the security teams are the boots on the ground working to make sure security releases are pushed out in a responsible and timely manner. The Drupal Security Team handles things like resolving reported security issues, assisting maintainers of contributed modules in securing their code, maintaining guides to help any Drupal developer write more secure code and providing documentation around best practices for securing a Drupal site. Let’s start with the teams at the heart of the day-to-day implementation: the Drupal Security Team and Security Working Group. Glad you asked! Security is a constant concern in the contributor community, and there are multiple initiatives working to be sure Drupal remains the most secure choice for clients that range from the new pizza place down the street to the white house.ĭrupal Security Team and Security Working Group That’s a big number, but what is the community actually doing to ensure Drupal stays secure? With a passionate community of that scale, the product can’t help but be solid. Granted, a relatively small portion of that number are developers, but those are all people using Drupal in some capacity, reviewing code and functionality, both actively and passively. The Drupal community numbers over 1 million. This being said, Grand Theft Auto 5 reportedly has a little over 1,000 people working to produce the game. Grand Theft Auto 5, one of the best-reviewed video games of the past few years, is known for refinement and a high level of polish. At first, it may seem counter-intuitive that Drupal is one of the most secure web platforms out there, but consider the numbers by comparison. Given that Drupal is open source software, free to use and with a codebase that is accessible to anyone who wants to examine it, there are often misconceptions about how that affects the platform’s security. If you’re interested in more examples, check out Tesla, Box, the American Red Cross, Stanford Business and the Grammys, or head over the showcases section of. Those sites are just a few highlights in a pool of big names that trust Drupal with some or all of their web presence. Drupal gives them all of that, plus more.ī - One of the biggest social networks trusts Drupal with their business site, which requires a stable, trustworthy platform that is easy for content administrators to interact with. With a huge number of stores, lots of original content and even some user sign-in functionality, Whole Foods require a platform that is performant, secure and easy to interact with. Content contributors and editors around the globe depend on Drupal to quickly and safely publish their content. Is there a better proponent for Drupal security than the White House? Regardless of your political stance, it’s tough to argue that the White House doesn’t need a scalable and secure platform.Į - When a 170+ year old publication needed a reliable online platform to push into the daily, digital realm, they chose Drupal. The Weather Channel currently sits at number 98 in the Quantcast top 100, and they trust their backend to stability and security Drupal provides. This one is familiar to just about everyone.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |