From cc42e2a1bd6eff049a01662b65058b6216345f35 Mon Sep 17 00:00:00 2001 From: octojedi Date: Tue, 22 Oct 2024 10:24:42 -0600 Subject: [PATCH 1/2] Create SECURITY.md Could the maintainer please create a SECURITY.md and publish a security policy in Github? Or provide the information and I'm happy to author and create a PR. --- SECURITY.md | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 000000000..130a48623 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,22 @@ +# Security Policy +TODO: Publish a security policy so users know the process for reporting vulnerabilities and expectations on fixes. + +## Supported Versions + +Use this section to tell people about which versions of your project are +currently being supported with security updates. + +| Version | Supported | +| ------- | ------------------ | +| 5.1.x | :white_check_mark: | +| 5.0.x | :x: | +| 4.0.x | :white_check_mark: | +| < 4.0 | :x: | + +## Reporting a Vulnerability + +Use this section to tell people how to report a vulnerability. + +Tell them where to go, how often they can expect to get an update on a +reported vulnerability, what to expect if the vulnerability is accepted or +declined, etc. From cb4bc1977a38d0785f43fe630ce9e6f8607efe1b Mon Sep 17 00:00:00 2001 From: octojedi Date: Tue, 22 Oct 2024 14:11:15 -0600 Subject: [PATCH 2/2] Update SECURITY.md --- SECURITY.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index 130a48623..bd963be62 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,5 +1,5 @@ # Security Policy -TODO: Publish a security policy so users know the process for reporting vulnerabilities and expectations on fixes. +TODO: Publish a security policy, so users know the process for reporting vulnerabilities and expectations on fixes. ## Supported Versions