Closed jsmanrique closed 10 months ago
As recommended by OpenSSF Best Pratices, we should give people instructions for reporting security vulnerabilities in your project.
One way is to add a security.md file: https://docs.github.com/en/code-security/getting-started/adding-a-security-policy-to-your-repository
security.md
For InditexTech projects, the security.md file's content is already defined. Check with the OSO (Open Source Office).
Project repository has a security.md file describing the steps to report project's vulnerabilities.
Detailed description
As recommended by OpenSSF Best Pratices, we should give people instructions for reporting security vulnerabilities in your project.
One way is to add a
security.mdfile: https://docs.github.com/en/code-security/getting-started/adding-a-security-policy-to-your-repositoryFor InditexTech projects, the
security.mdfile's content is already defined. Check with the OSO (Open Source Office).Expected behaviour
Project repository has a security.md file describing the steps to report project's vulnerabilities.