Skip to content

Created SECURITY.md #27067

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Created SECURITY.md #27067

wants to merge 1 commit into from

Conversation

@shettyvarshaa
Copy link
Contributor

@shettyvarshaa shettyvarshaa commented Oct 25, 2023
edited
Loading

Created a Security Policy to enhance community profile of the repository and to prevent potential vulnerabilities

What does this PR do?

Fixes #24627

Before submitting

  • This PR fixes a typo or improves the docs (you can dismiss the other checks if that's the case).
  • Did you read the contributor guideline,
    Pull Request section?
  • Was this discussed/approved via a Github issue or the forum? Please add a link
    to it if that's the case.
  • Did you make sure to update the documentation with your changes? Here are the
    documentation guidelines, and
    here are tips on formatting docstrings.
  • Did you write any new necessary tests?

Issue raised in the forum

Who can review?

CC : @stevhliu

@shettyvarshaa
Create SECURITY.md
31357ba 
Created a Security Policy to enhance community profile of the repository and to prevent potential vulnerabilities
stevhliu
stevhliu reviewed Oct 25, 2023
View reviewed changes
Copy link
Member

@stevhliu stevhliu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Instead of creating a new security doc (the first section looks like its copied from CONTRIBUTING.MD), I think we can just add a Security section in CONTRIBUTING.MD.

WDYT @ArthurZucker?

@shettyvarshaa
Copy link
Contributor Author

shettyvarshaa commented Oct 25, 2023
edited
Loading

Yes, I thought of adding handling bug into security policy which is also mentioned in contributing.md, but also, creating security doc will complete your community profile to meet the standards defined for a Repo

Screenshot of this repo's current community profile

@ArthurZucker
Copy link
Collaborator

ArthurZucker commented Oct 26, 2023

No strong opinion, but will ask internally to have guidance regarding the bounty hunting program rather than bug fixed in this!

@ArthurZucker
Copy link
Collaborator

ArthurZucker commented Oct 26, 2023

15cd096 fixes this 😉 thanks for the tip 🤗

@shettyvarshaa shettyvarshaa mentioned this pull request Oct 26, 2023
Merged
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@stevhliu stevhliu stevhliu left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@shettyvarshaa @ArthurZucker @stevhliu