Provide vulnerabilites report information #1214

Open
opened 2024-06-28 16:37:58 +00:00 by george.bartolomey · 1 comment

We need to publish information about privately reporting vulnerabilites.

Possible Solution

Add SECURITY.md with information about methods of reporting vulnerabilites, for example:

# Reporting a Vulnerability

Please, don't publish vulnerability, instead send an email to address security @ frostfs.info.

Also, there may be a security policy of the project in SECURITY.md.

We need to publish information about privately reporting vulnerabilites. ## Possible Solution Add SECURITY.md with information about methods of reporting vulnerabilites, for example: ``` # Reporting a Vulnerability Please, don't publish vulnerability, instead send an email to address security @ frostfs.info. ``` Also, there may be a security policy of the project in SECURITY.md.
george.bartolomey added the
bug
triage
labels 2024-06-28 16:37:58 +00:00
Author
Member

Please, add this to kanban of FLOSS best practices.

Please, add this to [kanban of FLOSS best practices](https://git.frostfs.info/TrueCloudLab/-/projects/8).
realloc added
documentation
and removed
triage
labels 2024-07-08 07:58:52 +00:00
realloc added this to the FLOSS Best Practices Criteria (Passing) project 2024-07-08 07:58:55 +00:00
realloc added the
Infrastructure
label 2024-07-08 07:59:17 +00:00
fyrchik added this to the vNext milestone 2024-10-02 06:27:21 +00:00
Sign in to join this conversation.
No milestone
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: TrueCloudLab/frostfs-node#1214
No description provided.