diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 18b17a905d..03fafdeb03 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -218,7 +218,6 @@ jobs: mvn --no-transfer-progress versions:set -DremoveSnapshot -DgenerateBackupPoms=false echo "RELEASE_VERSION=$(mvn help:evaluate -Dexpression=project.version -q -DforceStdout)" | tee -a $GITHUB_ENV sed -i -e "s/^\:project-version\:\ .*/:project-version: ${{ env.RELEASE_VERSION }}/g" README.adoc - sed -i -e "s/^\:sqlite-version\:\ .*/:sqlite-version: $(sed "s/^.*=//" VERSION)/g" SECURITY.adoc # The sonatype maven plugin will decide the right destination depending on whether the project is SNAPSHOT or not - name: Publish to Apache Maven Central run: mvn --batch-mode --no-transfer-progress deploy -P release -DskipTests diff --git a/SECURITY.adoc b/SECURITY.adoc deleted file mode 100644 index 9948452e2a..0000000000 --- a/SECURITY.adoc +++ /dev/null @@ -1,15 +0,0 @@ -= Security Policy -:sqlite-version: 3.41.2 - -== Supported Versions - -|=== -|Version |Supported - -|{sqlite-version}.x |:white_check_mark: -|< {sqlite-version}.x |:x: -|=== - -== Reporting a Vulnerability - -See https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing/privately-reporting-a-security-vulnerability#privately-reporting-a-security-vulnerability \ No newline at end of file diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000000..64c6a122e3 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,12 @@ +# Security Policy + +## Supported Versions + +| Version | Supported | +|-------------------|--------------------| +| Latest version | :white_check_mark: | +| Any other version | :x: | + +## Reporting a Vulnerability + +See https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing/privately-reporting-a-security-vulnerability#privately-reporting-a-security-vulnerability