search

Zavy86 / WikiDocs

📗 Just a databaseless markdown flat-file wiki engine
https://www.wikidocs.it
MIT License
311 stars 43 forks source link

create SECURITY.md #196

Open Et43 opened 2 months ago

Et43 commented 2 months ago

Discussed in https://github.com/Zavy86/WikiDocs/discussions/195

Originally posted by **Et43** September 23, 2024 Hey, Would be great if an official SECURITY.md could be made for the WikiDocs repository. This would allow for a responsible disclosure process to be initiated with any specifications and contact details provided on the document.
Zavy86 commented 2 months ago

That's a great idea, do you think you could work on it?

Et43 commented 2 months ago

I would much rather have a long time contributor like an owner draft up the specifics. Things like in-scope versions/branches, disclosure conditions, preferred channel of disclosure would be dependent on the owners or admins of the repository.

I rate as a base SECURITY.md you can do something simple by just saying the current master branch or current latest build version (as found in the releases page for the repo) is in scope and then give an email that can be used to get in contact with the disclosure coordinator.