Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create a SECURITY.md file #1292

Closed
kinow opened this issue Mar 22, 2022 · 0 comments · Fixed by #1318
Closed

Create a SECURITY.md file #1292

kinow opened this issue Mar 22, 2022 · 0 comments · Fixed by #1318
Assignees
@joelit
Labels
maintenance Dependency changes, security updates, infrastructure tweaks & general mainenance
Milestone
2.15

Comments

@kinow
Copy link
Collaborator

kinow commented Mar 22, 2022

Hi,

Today I saw a security issue reported in the mailing list for Skosmos. I think an alternative workflow would be to have an email listed in a file where users could redirect this kind of request. Then devs could confirm the issue and work on a new release with the security fix.

It's common to have a SECURITY.md file detailing which channels to use to report security issues, what the process is like, etc. Maybe we should adopt one too?

Bruno
@joelit joelit self-assigned this May 3, 2022
@joelit joelit added the maintenance Dependency changes, security updates, infrastructure tweaks & general mainenance label May 3, 2022
@joelit joelit mentioned this issue May 3, 2022
Merged
3 tasks
@joelit joelit added this to the 2.15 milestone May 3, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@joelit joelit

Labels
maintenance Dependency changes, security updates, infrastructure tweaks & general mainenance
Projects
None yet
Milestone
2.15
Development

Successfully merging a pull request may close this issue.

Create SECURITY.md NatLibFi/Skosmos
2 participants
@kinow @joelit