Security and privacy
Bei Weblate erhält Sicherheit eine Umgebung, welche die Privatsphäre unserer Benutzer wertschätzt.
Development of Weblate adheres to the Best Practices of the Linux Foundation’s Core Infrastructure Initiative.
Tracking dependencies for vulnerabilities
There might be vulnerabilities in third-party libraries which do not affect Weblate, so those are not addressed by releasing bugfix versions of Weblate.
Docker container security
The Docker containers are regularly scanned using Anchore and Trivy security scanners.
This allows us to detect vulnerabilities early and release improvements quickly.
You can get the results of these scans at GitHub — they are stored as artifacts on our CI in the SARIF format (Static Analysis Results Interchange Format).