Skip to content

Commit

Permalink
docs(repo): improve report process
Browse files Browse the repository at this point in the history
Signed-off-by: Oliver Bähler <[email protected]>
  • Loading branch information
oliverbaehler authored and prometherion committed Oct 24, 2023
1 parent 3bd4bc6 commit 682e372
Showing 1 changed file with 5 additions and 8 deletions.
13 changes: 5 additions & 8 deletions SECURITY.md
Original file line number Diff line number Diff line change
Expand Up @@ -30,18 +30,16 @@ reported by the tool _actually exists_ in capsule.

## Reporting a Vulnerability

To report a security issue or vulnerability, [submit a private vulnerability report via GitHub](https://github.com/projectcapsule/capsule/security/advisories/new) to the repository maintainers with a description of the issue, the steps you took to create the issue, affected versions, and, if known, mitigations for the issue.

Describe the issue in English, ideally with some example configuration or code which allows the issue to be reproduced. Explain why you believe this to be a security issue in capsule, if that's not obvious. should contain the following:

1. Describe the issue in English, ideally with some example configuration or code which allows the issue to be reproduced. Explain why you believe this to be a security issue in capsule, if that's not obvious. Emails should contain:

* description of the problem
* precise and detailed steps (include screenshots)
* the affected version(s). This may also include environment relevant versions.
* any possible mitigations



2. Send the email to [`[email protected]`](mailto:[email protected])
3. You may be contacted by a project maintainer to further discuss the reported item. Please bear with us as we seek to understand the breadth and scope of the reported problem, recreate it, and confirm if there is a vulnerability present.
If the issue is confirmed as a vulnerability, we will open a Security Advisory and acknowledge your contributions as part of it.

## Reponse

Expand All @@ -53,8 +51,7 @@ Response times could be affected by weekends, holidays, breaks or time zone diff

# Release Artifacts

All packages are published in the package registry of the repository.

[See all the available artifacts](https://github.com/orgs/projectcapsule/packages?repo_name=capsule)

## Verifing

Expand Down

0 comments on commit 682e372

Please sign in to comment.