Closed joycebrum closed 8 months ago
Hey! This PR has been idle for quite some time. Do you plan on considering these changes? Otherwise I will wait up to 2 more months to close the PR. Let me know if you rather keep it open as "not planned" for later. Thanks!
Closes #320
I've created the SECURITY.md file considering the report vulnerability through security advisory, which is a new github feature still in beta and that has to be enabled.
If you're interested in GitHub's feature, it must be activated for the repository:
If you rather not enable it there is also the possibility to receive the vulnerability report through an email, in this case just let me know which email it would be and I'll submit the change.
Besides that, feel free to edit or suggest any changes to this document, it is supposed to reflect the amount of effort the team can offer to handle vulnerabilities.