mirror of
https://github.com/Tivix/django-rest-auth.git
synced 2024-12-02 05:43:44 +03:00
Adds vulnerability disclosure
This commit is contained in:
parent
dfec75ed94
commit
202b5e8d4d
17
docs/disclosure.rst
Normal file
17
docs/disclosure.rst
Normal file
|
@ -0,0 +1,17 @@
|
|||
Vulnerability Disclosure
|
||||
========================
|
||||
|
||||
Attn: Developers and Security Researchers.
|
||||
|
||||
Please observe the standard best practices of responsible disclosure, especially considering that this is OSS.
|
||||
See OWASP's disclosure `cheat sheet <https://cheatsheetseries.owasp.org/cheatsheets/Vulnerability_Disclosure_Cheat_Sheet.html#methods-of-disclosure>`_.
|
||||
|
||||
Some basic rules:
|
||||
|
||||
- Keep it legal.
|
||||
- Respect everyone's privacy.
|
||||
- Contact the core maintainer(s) immediately if you discover a security vulnerability (imichael@pm.me for now).
|
||||
|
||||
|
||||
|
||||
|
|
@ -26,3 +26,4 @@ Contents
|
|||
Demo project <demo>
|
||||
FAQ <faq>
|
||||
Changelog <changelog>
|
||||
Security Disclosure <disclosure>
|
||||
|
|
Loading…
Reference in New Issue
Block a user