LabelGlobalSecurityAdvisory returns the IFC label for advisories served from the public GitHub Advisory Database (global advisories). The advisory database is world-readable, so confidentiality is public. Integrity is untrusted: advisory descriptions are externally authored prose and must not be tr
()
| 260 | // Integrity is untrusted: advisory descriptions are externally authored prose |
| 261 | // and must not be treated as a trusted instruction source. |
| 262 | func LabelGlobalSecurityAdvisory() SecurityLabel { |
| 263 | return PublicUntrusted() |
| 264 | } |
| 265 | |
| 266 | // LabelRepositorySecurityAdvisory returns the IFC label for repository- or |
| 267 | // organization-scoped security advisories. |