From 9196e60c74ad281d12fa8b0c9bd82a9118ff20d4 Mon Sep 17 00:00:00 2001 From: Joyce Date: Mon, 20 Mar 2023 14:49:44 -0300 Subject: [PATCH 1/3] Create SECURITY.md --- SECURITY.md | 5 +++++ 1 file changed, 5 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 00000000..0628f9cc --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,5 @@ +# Security Policy + +To report a security issue, please disclose it at [security advisory](https://github.com/haraldk/TwelveMonkeys/security/advisories/new). + +We will respond within 7 working days of your submission. If the issue is confirmed as a vulnerability, we will open a Security Advisory and acknowledge your contributions as part of it. This project follows a 90 day disclosure timeline. From e8996daa12ce55294a525c9ec4bed507207b9c55 Mon Sep 17 00:00:00 2001 From: Joyce Date: Tue, 21 Mar 2023 10:03:27 -0300 Subject: [PATCH 2/3] Update SECURITY.md to best effort --- SECURITY.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index 0628f9cc..e26040d6 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -2,4 +2,4 @@ To report a security issue, please disclose it at [security advisory](https://github.com/haraldk/TwelveMonkeys/security/advisories/new). -We will respond within 7 working days of your submission. If the issue is confirmed as a vulnerability, we will open a Security Advisory and acknowledge your contributions as part of it. This project follows a 90 day disclosure timeline. +All support will be made on the best effort base. From 4a8c3530f74c1ef8f5e1a3ee4a8bbdc6af6f2fbb Mon Sep 17 00:00:00 2001 From: Joyce Date: Tue, 21 Mar 2023 10:10:34 -0300 Subject: [PATCH 3/3] Update SECURITY.md --- SECURITY.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index e26040d6..a8bc668f 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -2,4 +2,4 @@ To report a security issue, please disclose it at [security advisory](https://github.com/haraldk/TwelveMonkeys/security/advisories/new). -All support will be made on the best effort base. +Vulnerabilities will be disclosed in a best effort base.