Move security information to the GitHub security tab (#6716)

* Create SECURITY.md

* Update security policy links in README.md
This commit is contained in:
Monte Hellawell 2019-05-29 09:57:07 +01:00 committed by Tom Christie
parent 10a0b42b74
commit 063f0de949
2 changed files with 11 additions and 4 deletions

View File

@ -175,9 +175,7 @@ You may also want to [follow the author on Twitter][twitter].
# Security # Security
If you believe you've found something in Django REST framework which has security implications, please **do not raise the issue in a public forum**. Please see the [security policy][security-policy].
Send a description of the issue via email to [rest-framework-security@googlegroups.com][security-mail]. The project maintainers will then work with you to resolve any issues where required, prior to any public disclosure.
[build-status-image]: https://secure.travis-ci.org/encode/django-rest-framework.svg?branch=master [build-status-image]: https://secure.travis-ci.org/encode/django-rest-framework.svg?branch=master
[travis]: https://travis-ci.org/encode/django-rest-framework?branch=master [travis]: https://travis-ci.org/encode/django-rest-framework?branch=master
@ -225,4 +223,4 @@ Send a description of the issue via email to [rest-framework-security@googlegrou
[image]: https://www.django-rest-framework.org/img/quickstart.png [image]: https://www.django-rest-framework.org/img/quickstart.png
[docs]: https://www.django-rest-framework.org/ [docs]: https://www.django-rest-framework.org/
[security-mail]: mailto:rest-framework-security@googlegroups.com [security-policy]: https://github.com/encode/django-rest-framework/security/policy

9
SECURITY.md Normal file
View File

@ -0,0 +1,9 @@
# Security Policy
## Reporting a Vulnerability
If you believe you've found something in Django REST framework which has security implications, please **do not raise the issue in a public forum**.
Send a description of the issue via email to [rest-framework-security@googlegroups.com][security-mail]. The project maintainers will then work with you to resolve any issues where required, prior to any public disclosure.
[security-mail]: mailto:rest-framework-security@googlegroups.com