I'm David from the Security team at Ubuntu. libde265 is being considered to be promoted to main through a MIR. During the analysis, I saw that there is no Security policy.
I would like to suggest having a SECURITY.md in place that would allow people finding security issues to know how to properly report them, especially sensitive bugs.
Hi!
I'm David from the Security team at Ubuntu. libde265 is being considered to be promoted to main through a MIR. During the analysis, I saw that there is no Security policy.
I would like to suggest having a
SECURITY.md
in place that would allow people finding security issues to know how to properly report them, especially sensitive bugs.Thank you for your work!