Skip to content

Commit

Permalink
use Github's vulnerability reporting
Browse files Browse the repository at this point in the history 
Signed-off-by: Marina Moore <[email protected]>
  • Loading branch information
@mnm678 @trishankatdatadog
mnm678 authored and trishankatdatadog committed Nov 15, 2022
1 parent 535756a commit ed9efc2
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion docs/SECURITY.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,8 @@ You may report issues for the most recent version of go-tuf. We will not retroac

## Reporting a Vulnerability

If you discover a potential security issue in this project we ask that you notify the go-tuf maintainers via our [vulnerability reporting form](https://forms.gle/ShM4s3mLbUAx5QHo8). At the minimum, the report must contain the following:
If you discover a potential security issue in this project we ask that you notify the go-tuf maintainers via [Github's private reporting feature](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing/privately-reporting-a-security-vulnerability). At the minimum, the report must contain the following:

* A description of the issue.
* A specific version or commit SHA of `go-tuf` where the issue reproduces.
* Instructions to reproduce the issue.
Expand Down

0 comments on commit ed9efc2

Please sign in to comment.