This is a fork of the original project by cloudflare. The configuration in this repository has been modified for Gradle's use.
This is the worker that serves security.txt on gradle.com and gradle.org.
From https://securitytxt.org,
When security risks in web services are discovered by independent security researchers who
understand the severity of the risk, they often lack the channels to disclose them properly.
As a result, security issues may be left unreported. security.txt defines a standard to help
organizations define the process for security researchers to disclose security vulnerabilities
securely.
Deploying should take about 5 minutes or less.
macOS
Please have homebrew installed.
brew install gnupg
You will need to configure wrangler.toml:
mv wrangler.toml.template wrangler.toml
and fill in the following values (account_id and zone_id are found on your Cloudflare zone dashboard):
- account_id
- zone_id
- routes
You will need to obtain a scoped API token to publish the worker.
You can do this at (https://dash.cloudflare.com/profile/api-tokens),
and choose the "Edit Cloudflare Workers" template.
We will later call the obtained token: ${TOKEN}
.
You can test your changes locally by running either:
make dev-com
make dev-org
You must deploy to each zone independently.
a. Run: CF_API_TOKEN=${token} make deploy-com
b. Run: CF_API_TOKEN=${token} make deploy-org