Add SECURITY.md - Security Policy #16206
Labels
documentation
Improvements or additions to documentation
help wanted
Contributions especially welcome
Comments
|
For reference, this is uv's security advisory https://github.com/astral-sh/uv/blob/main/SECURITY.md We should be able to copy most of it, with the exception of the first section. |
MichaReiser
added
documentation
Merged
zanieb
pushed a commit
that referenced
this issue
Feb 18, 2025
## Summary Resolves #16206. The file was copied almost verbatim from [uv's](https://github.com/astral-sh/uv/blob/929e7c3ad96ff6b14aeb60527e6a4526ed24ec43/SECURITY.md), with the first section removed. ## Test Plan None.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
Hello I’d like to propose the addition of a SECURITY.md file to this repository. This would make it easier for users/developers to report security vulnerabilities responsibly improving the project’s security posture and potentially increase the project’s OpenSSF Scorecard ratinghttps://scorecard.dev/.
Here’s a guide that could be helpful during implementation: Adding Security Policy to Your Repository
The text was updated successfully, but these errors were encountered: