You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Creates a preferred method of contact by security researchers in the event of a security vulnerability instead of posting it publicly which could lead to disclosure of vulnerability details.
They are able to report to us via a simple form
When a vulnerability is reported, we can accept it, ask more questions, or reject it. If accepted, you are ready to collaborate on a fix.
Vulnerability is less likely to be in the public eye
## Description
- [x] Creates a preferred method of contact by security researchers in
the event of a security vulnerability instead of posting it publicly
which could lead to disclosure of vulnerability details.
- [x] Provides description of where and how to report
- [x] When a vulnerability is reported, we can accept it, ask more
questions, or reject it. If accepted, we are ready to collaborate on a
fix.
- [x] Vulnerability is less likely to be in the public eye
- [x] Updates the docs
## Related Issue
Fixes#639
<!-- or -->
Relates to #
## Type of change
- [ ] Bug fix (non-breaking change which fixes an issue)
- [ ] New feature (non-breaking change which adds functionality)
- [x] Other (security config, docs update, etc)
## Checklist before merging
- [x] Test, docs, adr added or updated as needed
- [x] [Contributor Guide
Steps](https://github.com/defenseunicorns/pepr/blob/main/CONTRIBUTING.md#submitting-a-pull-request)
followed
---------
Signed-off-by: Case Wylie <cmwylie19@defenseunicorns.com>
Add a
Security.md
Tracking issue for:
The text was updated successfully, but these errors were encountered: