From 27c3a7ea5ae7e8212b834d4ebd6c2a64ca1afc3b Mon Sep 17 00:00:00 2001
From: Lonnie Ezell <lonnieje@gmail.com>
Date: Tue, 9 Nov 2021 22:18:38 -0600
Subject: [PATCH] Added security disclosure page

---
 app/Config/Routes.php           |  1 +
 app/Controllers/Disclosures.php | 11 +++++++++
 app/Views/disclosures.php       | 43 +++++++++++++++++++++++++++++++++
 app/Views/layouts/_footer.php   |  1 +
 4 files changed, 56 insertions(+)
 create mode 100644 app/Controllers/Disclosures.php
 create mode 100644 app/Views/disclosures.php

diff --git a/app/Config/Routes.php b/app/Config/Routes.php
index e815f75..9733ab8 100644
--- a/app/Config/Routes.php
+++ b/app/Config/Routes.php
@@ -37,6 +37,7 @@
 $routes->get('download', 'Download::index');
 $routes->get('policies', 'Policies::index');
 $routes->get('the-fine-print', 'FinePrint::index');
+$routes->get('security-disclosures', 'Disclosures::index');
 
 // Blog
 $routes->get('news', 'Blog::index');
diff --git a/app/Controllers/Disclosures.php b/app/Controllers/Disclosures.php
new file mode 100644
index 0000000..b1c3929
--- /dev/null
+++ b/app/Controllers/Disclosures.php
@@ -0,0 +1,11 @@
+<?php
+
+namespace App\Controllers;
+
+class Disclosures extends BaseController
+{
+    public function index()
+    {
+        echo $this->render('disclosures');
+    }
+}
diff --git a/app/Views/disclosures.php b/app/Views/disclosures.php
new file mode 100644
index 0000000..097aea2
--- /dev/null
+++ b/app/Views/disclosures.php
@@ -0,0 +1,43 @@
+<?= $this->extend('layouts/app') ?>
+
+<?= $this->section('content') ?>
+
+<!-- CONTENT -->
+<div class="clr"></div>
+<section id="content-outer">
+    <div id="content-inner">
+        <div id="policies-icon-holder">
+            <img src="/assets/icons/44521256.png" id="policies-icon"/>
+        </div><!--icon ends here-->
+
+            <p>The following items have been reported to the CodeIgniter core team and addressed as potential security
+                concerns. Not all of them will affect your sites, but you should periodically review this list to
+                determine any threats.
+            </p>
+
+            <p>These disclosures are primarily aimed at the website and surrounding environment. Security disclosures
+                affecting the framework will be handled through GitHub's built-in Security Advisors functionality.
+            </p>
+
+
+            <div class="inner-page-text-box">
+                <div class="inner-page-text-box-title">Disclosures</div>
+
+                <div class="clr"></div>
+
+                <div class="inner-page-text-sub-box">
+                    <div class="inner-page-text-sub-box-title">CodeIgniter.com Email Spoofing</div>
+
+                    <p>Oct 25, 2021 - <b>The MX</b> reported that the codeigniter.com domain was able to be used for email
+                        spoofing due to the lack of a DKIM record. We updated the DNS to include a DKIM record as a result.
+                    </p>
+                </div>
+            </div>
+
+    </div><!--content-inner ends here-->
+</section><!--section end -->
+
+
+    <div class="clr"></div>
+
+<?= $this->endSection() ?>
diff --git a/app/Views/layouts/_footer.php b/app/Views/layouts/_footer.php
index 786a47e..d347f4b 100644
--- a/app/Views/layouts/_footer.php
+++ b/app/Views/layouts/_footer.php
@@ -3,6 +3,7 @@
         <div id="footer-inner-left">
             <a href="/policies" class="footer-menu-item" >Policies</a>
             <a href="/the-fine-print" class="footer-menu-item" >The Fine Print</a>
+            <a href="/security-disclosures" class="footer-menu-item" >Security Disclosures</a>
             <a href="/news" class="footer-menu-item">News</a>
             <a href="/discuss" class="footer-menu-item" >Discuss</a>
             <a href="/contribute" class="footer-menu-item" >Contribute</a>