mirror_php/formwork
1
0
Fork 0
mirror of https://github.com/getformwork/formwork.git synced 2025-01-16 13:09:08 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update security policy

Browse Source
This commit is contained in:
Giuseppe Criscione 2024-05-25 16:05:14 +02:00
parent e776417d14
commit 7a497f106f
1 changed files with 13 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
SECURITY.md
View File

@ -4,9 +4,19 @@
| Version | Supported |
| --------- | ------------------ |
| >= 1.12.x | :white_check_mark: |
| < 1.12.0 | :x: |
| >= 1.13.x | :white_check_mark: |
| < 1.13.0 | :x: |
## Reporting a Vulnerability
Please contact security@getformwork.org with an explaination of the security issue you found and we'll work together to resolve it.
We appreciate anyone's effort to report vulnerabilities found in Formwork. Be responsible about disclosing the vulnerability
**You can [draft a security advisory](https://github.com/getformwork/formwork/security/advisories/new)** with an explaination of the security issue you found and we'll work together to resolve it.
If you prefer you can still contact security@getformwork.org
> [!WARNING]
> Remember that not informing about the vulnerability or publicly disclosing details about the vulnerability even on our Discord channels, or without us knowing, which is even worse, exposes Formwork users to unnecessary additional risk.
> [!IMPORTANT]
> Please do NOT use third party security reporting services, or authorities like MITRE to get CVE IDs, we like to keep everything at GitHub for better manageability. We'll request a CVE ID for confirmed vulnerabilities.