Add SECURITY.md #253

jessesuen · 2022-03-22T18:49:45Z

The Argo maintainers recently agreed to require all Argoproj Labs project repositories to contain a SECURITY.md file which documents:

Contact information for reporting security vulnerabilities
Some minimal information about policies, practices, with possibly links to further documentation with more details

This will help direct vulnerability reporting to the right parties which can fix the issue.

You are free to use the following as examples/templates:

Also, please note that in the future we are exploring a requirement that argoproj-labs projects perform a CII self-assessment to better inform its users about which security best practices are being followed.

The text was updated successfully, but these errors were encountered:

roi-codefresh · 2022-03-29T12:07:14Z

Handled in #256.

roi-codefresh self-assigned this Mar 27, 2022

roi-codefresh added the documentation Improvements or additions to documentation label Mar 27, 2022

roi-codefresh linked a pull request Mar 29, 2022 that will close this issue

Add security.md #256

Merged

roi-codefresh closed this as completed in #256 Mar 29, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add SECURITY.md #253

Add SECURITY.md #253

jessesuen commented Mar 22, 2022

roi-codefresh commented Mar 29, 2022

Add SECURITY.md #253

Add SECURITY.md #253

Comments

jessesuen commented Mar 22, 2022

roi-codefresh commented Mar 29, 2022