Skip to content

Localize Security Best Practices article to Korean #3580

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
eazyhozy wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Localize Security Best Practices article to Korean #3580

eazyhozy wants to merge 2 commits into from
+116 −43

Conversation

@eazyhozy
Copy link

@eazyhozy eazyhozy commented Jan 7, 2026

  • Have you followed the contributing guidelines?
  • Have you explained what your changes do, and why they add value to the Guides?

Please note: we will close your PR without comment if you do not check the boxes above and provide ALL requested information.

This PR adds a Korean translation of the Security Best Practices article.

  • Localized the content, title, and description
  • Confirmed correct rendering on the landing page and article page after build

Reference: https://opensource.guide/ko/security-best-practices-for-your-project/

Before (as-is)

SCR-20260107-orsz SCR-20260107-oruw

After (to-be)

SCR-20260107-orne SCR-20260107-orpp

@eazyhozy eazyhozy requested a review from a team as a code owner January 7, 2026 07:57
roeniss
roeniss reviewed Jan 11, 2026
View reviewed changes
Copy link

@roeniss roeniss left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hello, I reviewed the translation from the top then stopped at line 52 (before "## Avoid unwanted changes with protected branches" line) because I realized that the ko/security-best-practices-for-your-project.md and root security-best-practices-for-your-project.md have different text quite a lot.

I think it would be better to continue review after those original english (untranslated) files are updated to the latest version. Let me make another PR for that.

edit) here: #3582

_articles/ko/security-best-practices-for-your-project.md
---

Bugs and new features aside, a project's longevity hinges not only on its usefulness but also on the trust it earns from its users. Strong security measures are important to keep this trust alive. Here are some important actions you can take to significantly improve your project's security.
버그 수정과 새로운 기능도 중요하지만, 프로젝트의 장기적인 지속 가능성은 유용성뿐만 아니라 사용자로부터 얻는 **신뢰**에 달려 있습니다. 이 신뢰를 유지하기 위해서는 강력한 보안 조치가 필수적입니다. 아래는 프로젝트의 보안 수준을 크게 향상시킬 수 있는 중요한 실천 사항들입니다.
Copy link

@roeniss roeniss Jan 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Original text doesn't have bold (**). Why did you add it?

_articles/ko/security-best-practices-for-your-project.md
* Beware of False Positives! You don't want the tool to slow you down for no reason!
* Check the features: some tools are very powerful and can do taint tracking (example: GitHub CodeQL), some propose AI-generated fix suggestions, some make it easier to write custom queries (example: SemGrep).
* 이미 사용 중인 도구와 기존 프로세스에 쉽게 통합되는 것을 선택하세요. 예를 들어, 경고를 확인하기 위해 다른 도구로 이동하기보다, 기존 코드 리뷰 프로세스/도구의 일부로 경고를 확인할 수 있는 편이 더 좋습니다.
* 거짓 양성(False Positive)에 주의하세요! 이유 없이 개발 속도를 늦추는 도구는 원하지 않을 것입니다.
Copy link

@roeniss roeniss Jan 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
* 거짓 양성(False Positive)에 주의하세요! 이유 없이 개발 속도를 늦추는 도구는 원하지 않을 것입니다.
* 거짓 양성(False Positive)에 주의하세요! 도구가 아무 이유 없이 작업 속도를 늦추게 하고 싶지는 않으시겠죠!

_articles/ko/security-best-practices-for-your-project.md
* Check the features: some tools are very powerful and can do taint tracking (example: GitHub CodeQL), some propose AI-generated fix suggestions, some make it easier to write custom queries (example: SemGrep).
* 이미 사용 중인 도구와 기존 프로세스에 쉽게 통합되는 것을 선택하세요. 예를 들어, 경고를 확인하기 위해 다른 도구로 이동하기보다, 기존 코드 리뷰 프로세스/도구의 일부로 경고를 확인할 수 있는 편이 더 좋습니다.
* 거짓 양성(False Positive)에 주의하세요! 이유 없이 개발 속도를 늦추는 도구는 원하지 않을 것입니다.
* 기능을 확인하세요. 일부 도구는 매우 강력해 오염 추적(예: GitHub CodeQL)을 수행할 수 있고, 일부는 AI가 생성한 수정 제안을 제공하며, 일부는 커스텀 쿼리를 더 쉽게 작성할 수 있게 해줍니다(예: SemGrep).
Copy link

@roeniss roeniss Jan 11, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
* 기능을 확인하세요. 일부 도구는 매우 강력해 오염 추적(예: GitHub CodeQL)을 수행할 수 있고, 일부는 AI가 생성한 수정 제안을 제공하며, 일부는 커스텀 쿼리를 더 쉽게 작성할 수 있게 해줍니다(예: SemGrep).
* 이런 기능들도 확인해보세요: 일부 도구는 매우 강력해 오염 추적(예: GitHub CodeQL)을 수행할 수 있고, 일부는 AI가 생성한 수정안을 제안하며, 일부는 커스텀 쿼리를 더 쉽게 작성할 수 있게 해줍니다(예: SemGrep).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@roeniss roeniss roeniss left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@eazyhozy @roeniss