Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security policy #19

Closed
wooorm opened this issue May 23, 2019 · 1 comment · Fixed by #29
Closed

Security policy #19

wooorm opened this issue May 23, 2019 · 1 comment · Fixed by #29
Labels
💪 phase/solved Post is done 💬 type/discussion This is a request for comments

Comments

@wooorm
Copy link
Member

wooorm commented May 23, 2019

GH today added more visibility to security policies, similar to how they surface a support.md, contributing.md, and code-of-conduct.md: https://github.blog/changelog/2019-05-23-maintainer-security-advisories/

There is now support for a security.md file.

It seems to be possible to add this in a org/.github repo as well.
@wooorm
Copy link
Member Author

wooorm commented May 24, 2019

https://www.hackerone.com/blog/taking-guesswork-out-of-vulnerability-reporting describes that they have a policy builder for a security.md: https://hackerone.com/policy-builder

@wooorm wooorm added help wanted 🙏 This could use your insight or help 💬 type/discussion This is a request for comments 🙆 yes/confirmed This is confirmed and ready to be worked on labels Aug 10, 2019
wooorm added a commit that referenced this issue Aug 21, 2019
@wooorm
Add organizations policy
8cd3595 
Related-to GH-6.
Closes GH-19.
@wooorm wooorm mentioned this issue Aug 21, 2019
Merged
@wooorm wooorm removed the help wanted 🙏 This could use your insight or help label Aug 21, 2019
wooorm added a commit that referenced this issue Aug 28, 2019
@wooorm
Add organizations policy
daeabf4 
Related-to GH-6.
Closes GH-19.
Closes GH-29.

Reviewed-by: Merlijn Vos <[email protected]>
@wooorm wooorm added ⛵️ status/released and removed 🙆 yes/confirmed This is confirmed and ready to be worked on labels Dec 1, 2019
@wooorm wooorm added the 💪 phase/solved Post is done label May 21, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
💪 phase/solved Post is done 💬 type/discussion This is a request for comments
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Add organizations policy unifiedjs/collective
1 participant
@wooorm