Skip to content
Tools / DFIR ORC / Security

Security Deep Dive

DFIR ORC

Security posture and CVE patch evidence from tracked releases.

Back to Tool

No CVEs tracked against v10.3.1.

— Signed — SLSA — SBOM ✓ Security policy Unknown cadence Sporadic maintainer

Trust Signals — 2 of 9 Present

Evidence already collected from releases and repository metadata.

2/9 Present
Signed releases Unknown
Latest release artifact signature Latest release
SLSA provenance Unknown
Attestation predicate level Latest release
SBOM published Unknown
GitHub SBOM API Latest release
SECURITY.md Present
GitHub repository metadata Repository policy
Checked: 7d ago
Release cadence Unknown
12-release median Release history
Latest release: 2d ago
Maintainer sporadic Present
Recent commit activity Repository
Last commit: 2mo ago
Checksums (SHA256SUMS) Not active yet
SHA256SUMS or equivalent Release asset
Latest release: 2d ago
GitHub Actions attestation Not active yet
actions/attest-build-provenance Workflow file
Latest release: 2d ago
Signing assets Not active yet
.sig, .crt, cosign.pub, or similar Release asset
Latest release: 2d ago

Beta — feedback welcome: [email protected]