From 7c8494329b5f0f851bc44957117e1780690bf783 Mon Sep 17 00:00:00 2001
From: RafaelGSS <rafael.nunu@hotmail.com>
Date: Thu, 11 Sep 2025 11:15:42 -0300
Subject: [PATCH 1/2] doc: add 2025-09-11 meeting notes

---
 meetings/2025-09-11.md | 58 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 58 insertions(+)
 create mode 100644 meetings/2025-09-11.md

diff --git a/meetings/2025-09-11.md b/meetings/2025-09-11.md
new file mode 100644
index 00000000..93b236c8
--- /dev/null
+++ b/meetings/2025-09-11.md
@@ -0,0 +1,58 @@
+# Node.js  Security team Meeting 2025-09-11
+
+## Links
+
+* **Recording**:  https://www.youtube.com/watch?v=2_exLrhF5YM&ab_channel=node.js
+* **GitHub Issue**: https://github.com/nodejs/security-wg/issues/1518
+* **Minutes Google Doc**: https://docs.google.com/document/d/1zPUOHww6WD9VtLoTeoMaPuoWeHi6_6uujHcVNG1SeF0/edit?tab=t.0
+
+## Present
+
+* Security wg team: @nodejs/security-wg
+
+* Ulises Gascón: @UlisesGascon
+* Rafael Gonzaga: @RafaelGSS
+
+## Agenda
+
+## Announcements
+* There is a campaign against npm maintaienrs where attackers are using stolen tokens to impersonate maintainers and publish malicious versions:
+  - https://jfrog.com/blog/new-compromised-packages-in-largest-npm-attack-in-history/
+
+
+*Extracted from **security-wg-agenda** labelled issues and pull requests from the **nodejs org** prior to the meeting.
+
+- [X] Vulnerability Review - https://github.com/nodejs/nodejs-dependency-vuln-assessments/issues
+- [X] OpenSSF Scorecard Monitor Review
+  - No Action needed from our team. Last PR can be merged: https://github.com/nodejs/security-wg/pull/1520 
+
+### nodejs/node
+
+* src: add WDAC integration (Windows) #54364
+  * No updates
+
+* Option to enable inspection mode along with permission model #48534
+  * Rafael opened a PR to add –allow-inspector https://github.com/nodejs/node/pull/59711
+  * Seems ready to go
+
+### nodejs/security-wg
+
+* Create a VEX file for Node.js #1517
+  * Leaving that open for further discussion with Marco
+
+* Update on CVEs for EOL Release Lines – MITRE Removal & Next Steps #1443
+  * Closing as completed
+
+* Node.js maintainers: Threat Model #1333
+  * Closing as completed
+
+## Q&A, Other
+
+https://github.com/nodejs/node/pull/59806
+
+## Upcoming Meetings
+
+* **Node.js Project Calendar**: <https://nodejs.org/calendar>
+
+Click `+GoogleCalendar` at the bottom right to add to your own Google calendar.
+

From bafb497dc2994f191f7ef640fc36b9fcc708478b Mon Sep 17 00:00:00 2001
From: Rafael Gonzaga <rafael.nunu@hotmail.com>
Date: Thu, 11 Sep 2025 13:47:01 -0300
Subject: [PATCH 2/2] Update meetings/2025-09-11.md
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Co-authored-by: Ulises Gascón <ulisesgascongonzalez@gmail.com>
---
 meetings/2025-09-11.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/meetings/2025-09-11.md b/meetings/2025-09-11.md
index 93b236c8..f73efcb2 100644
--- a/meetings/2025-09-11.md
+++ b/meetings/2025-09-11.md
@@ -16,8 +16,7 @@
 ## Agenda
 
 ## Announcements
-* There is a campaign against npm maintaienrs where attackers are using stolen tokens to impersonate maintainers and publish malicious versions:
-  - https://jfrog.com/blog/new-compromised-packages-in-largest-npm-attack-in-history/
+* A targeted campaign has emerged against npm package maintainers, where attackers are leveraging stolen authentication tokens to impersonate maintainers and publish malicious package versions: https://jfrog.com/blog/new-compromised-packages-in-largest-npm-attack-in-history/
 
 
 *Extracted from **security-wg-agenda** labelled issues and pull requests from the **nodejs org** prior to the meeting.