Closed sergiotarxz closed 4 months ago
Create SECURITY.md to avoid security researchers to dive into the actual documentation searching for the correct way to send a found security bug.
Adding a file which contains where to report security issues.
Because security researchers could otherwise findd a hard time finding for the correct email.
Github suggests it also.
Fixes #2152. Maybe Mojolicious contributors want to add something else to this draft file.
The core team will write the content if the file is deemed necessary.
Create SECURITY.md to avoid security researchers to dive into the actual documentation searching for the correct way to send a found security bug.
Summary
Adding a file which contains where to report security issues.
Motivation
Because security researchers could otherwise findd a hard time finding for the correct email.
References
Github suggests it also.