create a Security Policy

Question

create a Security Policy

Closed this issue 2 years ago · 4 comments

vjpixel commented 3 years ago

Feature Request

Is your feature request related to a problem? Please describe.
We don't have a security policy.

Describe the solution you'd like
Create one, so it's easier for users to report vulnerabilities.

Answer 1 · 2022-02-17T19:08:40.000Z

Hey, @vjpixel
@Bruno-Felix and I would like to be working on this issue. Is it free for us to take it?

Answer 2 · 2022-02-18T00:15:00.000Z

Go ahead!

…

On Thu, Feb 17, 2022, 16:08 Hugo Sobral de Lima ***@***.***> wrote: Hey, @vjpixel <https://github.com/vjpixel> @Bruno-Felix <https://github.com/Bruno-Felix> and I would like to be working on this issue. Is it free for us to take it? — Reply to this email directly, view it on GitHub <#432 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAH4ULD5L2ZNSUQZQEXTSGTU3VBUJANCNFSM5AEQISTQ> . Triage notifications on the go with GitHub Mobile for iOS <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675> or Android <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>. You are receiving this because you were mentioned.Message ID: ***@***.***>

Answer 3 · 2022-02-24T00:49:34.000Z

@vjpixel we suggested using the github bug issue template as the default way to report vulnerability issues.
Is it appropriate or should we use another communication channel as the default reporting tool?

Answer 4 · 2022-02-24T03:54:21.000Z

You can use it.

…

On Wed, Feb 23, 2022, 21:49 Hugo Sobral de Lima ***@***.***> wrote: @vjpixel <https://github.com/vjpixel> we suggested using the github bug issue template as the default way to report vulnerability issues. Is it appropriate or should we use another communication channel as the default reporting tool? — Reply to this email directly, view it on GitHub <#432 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAH4ULC23D7PJWPCLIT5D6LU4V6CTANCNFSM5AEQISTQ> . Triage notifications on the go with GitHub Mobile for iOS <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675> or Android <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>. You are receiving this because you were mentioned.Message ID: ***@***.***>