Add external security audit information

Signed-off-by: Chris Aniszczyk <caniszczyk@gmail.com>
tsandall · Aug 30, 2018 · 5a92307 · 5a92307
1 parent e04365e
commit 5a92307
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 1 deletion.
diff --git a/README.md b/README.md
@@ -287,7 +287,13 @@ true
 - Enforcing Bespoke Policies In Kubernetes @ KubeCon US 2017: [video](https://www.youtube.com/watch?v=llDI8VvkUj8), [slides](https://www.slideshare.net/TorinSandall/enforcing-bespoke-policies-in-kubernetes).
 - Istio's Mixer: Policy Enforcement with Custom Adapters @ CloudNativeCon US 2017: [video](https://www.youtube.com/watch?v=czZLXUqzd24), [slides](https://www.slideshare.net/TorinSandall/istios-mixer-policy-enforcement-with-custom-adapters-cloud-nativecon-17).
 
-## Reporting Security Vulnerabilities
+## Security
+
+### Security Audit
+
+A third party security audit was performed by Cure53, you can see the full report [here](SECURITY_AUDIT.pdf)
+
+### Reporting Security Vulnerabilities
 
 Please report vulnerabilities by email to [open-policy-agent-security](mailto:open-policy-agent-security@googlegroups.com).
 We will send a confirmation message to acknowledge that we have received the

diff --git a/SECURITY_AUDIT.pdf b/SECURITY_AUDIT.pdf