search

mybatis / mybatis-3

MyBatis SQL mapper framework for Java
http://mybatis.github.io/mybatis-3/
Apache License 2.0
19.74k stars 12.84k forks source link

Security policy #3263

Open jcrben opened 1 week ago

jcrben commented 1 week ago

For security-conscious and especially commercial entities, a SECURITY.md file which shows up in the Github Security tab is quite helpful.

You can set a SECURITY.md at the project level or the organization level. For example here's a couple projects which set it at the organization level:

Those organizations currently use Tidelift, which might be helpful because it's a third-party which means it's easier to trust than an individual. But I don't know too much about that - I think any security policy would be helpful.

Jameslebron6 commented 6 days ago

We are students at the Australian National University and are completing the assignment for comp6120. We are very interested in this issue. Can you assign this issue to us?