USEFULL
/
gogs
mirror of https://github.com/gogs/gogs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

security: encourage reporting vulnerabilities through huntr.dev (#6811) 

[skip ci]
pull/6816/head
Joe Chen 2022-03-06 20:13:56 +08:00 committed by GitHub
parent e452d94fc8
commit 36102f1689
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
SECURITY.md
View File

@ -2,9 +2,12 @@
## Supported versions
Only lastest two minor version releases are supported for patching security fixes.
Only lastest two minor version releases are supported for accepting vulnerability reports and patching for fixes.
## Reporting a vulnerability
Please create a dummy issue with high-level description of the security vulnerability,
then report details to [security@gogs.io](mailto:security@gogs.io) privately, thank you!
Please create a dummy issue with high-level description of the security vulnerability, then report details to [security@gogs.io](mailto:security@gogs.io) privately.
We strongly enourage to use https://huntr.dev/ for submitting and managing status of vulnerability reports instead of emails.
Thank you!