Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update security policy and SLA #16303

Merged
merged 3 commits into from Apr 11, 2024
Merged

Update security policy and SLA #16303

merged 3 commits into from Apr 11, 2024

Conversation

gerald-hartig
Copy link
Collaborator

@gerald-hartig gerald-hartig commented Mar 14, 2024
edited

Link to issue number:

https://github.com/nvaccess/Internal-issue-tracking/issues/529

Summary of the issue:

Update security policy to clarify when security issues are submitted, for each severity level, what is our SLA, how many resources do we allocate, when do we release the patch & advisory?

Description of user facing changes

Documentation only: Security policy

Description of development approach

n/a

Testing strategy:

n/a

Known issues with pull request:

n/a

Code Review Checklist:

  • Documentation:
    • Change log entry
    • User Documentation
    • Developer / Technical Documentation
    • Context sensitive help for GUI changes

@gerald-hartig gerald-hartig requested review from a team as code owners March 14, 2024 04:51
@AppVeyorBot
Copy link

See test results for failed build of commit 447c366b72

CyrilleB79
CyrilleB79 reviewed Mar 14, 2024
View reviewed changes
security.md Outdated Show resolved Hide resolved
seanbudd
seanbudd approved these changes Mar 15, 2024
View reviewed changes
Copy link
Member

@seanbudd seanbudd left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good work @gerald-hartig

security.md Outdated Show resolved Hide resolved
security.md Outdated Show resolved Hide resolved
gerald-hartig and others added 2 commits March 15, 2024 11:17
@gerald-hartig @seanbudd
Split security advisory paragraph
e13e0cf 
Co-authored-by: Sean Budd <sean@nvaccess.org>
@gerald-hartig @seanbudd
Split planning & mitigation paragraphs
4d836cd 
Co-authored-by: Sean Budd <sean@nvaccess.org>
SaschaCowley
SaschaCowley approved these changes Mar 19, 2024
View reviewed changes
security.md
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good!

@seanbudd seanbudd merged commit e4ebdc5 into master Apr 11, 2024
3 checks passed
@seanbudd seanbudd deleted the update-sec-pol-sla branch April 11, 2024 05:07
@nvaccessAuto nvaccessAuto added this to the 2024.2 milestone Apr 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@CyrilleB79 CyrilleB79 CyrilleB79 left review comments

@seanbudd seanbudd seanbudd approved these changes

@SaschaCowley SaschaCowley SaschaCowley approved these changes

@Qchristensen Qchristensen Awaiting requested review from Qchristensen Qchristensen is a code owner automatically assigned from nvaccess/userdocs

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
2024.2
Development

Successfully merging this pull request may close these issues.

None yet
6 participants
@gerald-hartig @AppVeyorBot @seanbudd @SaschaCowley @CyrilleB79 @nvaccessAuto