Create a dedicated security policy file

giampaolo / psutil

Cross-platform lib for process and system monitoring in Python

BSD 3-Clause "New" or "Revised" License

10.11k stars 1.37k forks source link

Create a dedicated security policy file #2303

Closed pnacht closed 4 months ago

pnacht commented 10 months ago

Summary

Type: doc
Fixes #2302

Description

This PR moves the information on how to disclose security vulnerabilities from CONTRIBUTING.md to a dedicated SECURITY.md file.

The new policy also adds some instructions on relevant information to be passed along with the vulnerability report. If there's anything you want to change, let me know!

pnacht commented 8 months ago

Hey, let me know if this is something you're interested in. If not, feel free to close!

giampaolo commented 4 months ago

I added a SECURITY.md file some time ago, but thanks for opening this. Closing it out.