Please read the contributing guide as well as the Developer Certificate of Origin. You will be required to sign all commits to the Openlane project, so if you're unfamiliar with how to set that up, see github's documentation.
Given external users will not have write to the branches in this repository, you'll need to follow the forking process to open a PR - here is a guide from github on how to do so.
This repository contains open source software that comprises the Openlane stack which is open source software under Apache 2.0. Openlane's SaaS / Cloud Services are products produced from this open source software exclusively by theopenlane, Inc. This product is produced under our published commercial terms (which are subject to change). Any logos or trademarks in our repositories in theopenlane organization are not covered under the Apache License and are trademarks of theopenlane, Inc.
Others are allowed to make their own distribution of this software or include this software in other commercial offerings, but cannot use any of the Openlane logos, trademarks, cloud services, etc.
We take the security of our software products and services seriously, including our commercial services and all of the open source code repositories managed through our Github Organizations, such as theopenlane. If you believe you have found a security vulnerability in any of our repositories or in our SaaS offering(s), please report it to us through coordinated disclosure.
Please do NOT report security vulnerabilities through public github issues, discussions, or pull requests!
Instead, please send an email to security@theopenlane.io
with as much information as possible to best help us understand and resolve the issues. See the security policy attached to this repository for more details.
You can email us at info@theopenlane.io
, open a github issue in this repository, or reach out to matoszz directly.