Starburst performs security scans of the code base for SEP regularly. This effort is part of the routine development tasks, and includes the following measures:
Source code analysis of SEP
Source code analysis of Trino
Third party dependency analysis for security issues
Monitoring of public disclosure of vulnerabilities affecting any used component
Improvements and remediation work result in fixes that are available with each new release. When necessary fixes are also ported to supported LTS releases.
For further questions, contact Starburst Support.