Open Carreau opened 1 year ago
Have a schedule to audit it.
Note in particular that even if private vulnerability reporting is enabled to allow every user to create a security advisory, the "private vulnerability reporting" is per-repo, while security manager is per-org.
Have a schedule to audit it.