diff options
author | Jeremy Stanley <fungi@yuggoth.org> | 2018-03-19 20:20:24 +0000 |
---|---|---|
committer | Jeremy Stanley <fungi@yuggoth.org> | 2018-12-05 16:12:30 +0000 |
commit | ddd8594a3c0ed7129a63d216db5cfe2fb359e8ce (patch) | |
tree | 157478e88c0d8d6545d65a9df51348017e1629e4 /README.rst | |
parent | 65a89f441b8c84501e87a8f26e37d38e08b0e42c (diff) | |
download | zuul-ddd8594a3c0ed7129a63d216db5cfe2fb359e8ce.tar.gz |
Add instructions for reporting vulnerabilities
Prominently in the Zuul User Guide, include a brief overview of
preferred methods for reporting suspected security vulnerabilities.
Also link to it from the README in such a way that the same
reference can be reused in other related Zuul repositories following
the same policy.
Change-Id: I2bd13bd13372f26c328cd7d6b5618ee8edffe490
Diffstat (limited to 'README.rst')
-rw-r--r-- | README.rst | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/README.rst b/README.rst index fa2d5d205..56ef4db3f 100644 --- a/README.rst +++ b/README.rst @@ -38,6 +38,10 @@ To clone the latest code, use `git clone https://git.zuul-ci.org/zuul` Bugs are handled at: https://storyboard.openstack.org/#!/project/openstack-infra/zuul +Suspected security vulnerabilities are most appreciated if first +reported privately following any of the supported mechanisms +described at https://zuul-ci.org/docs/zuul/user/vulnerabilities.html + Code reviews are handled by gerrit at https://review.openstack.org After creating a Gerrit account, use `git review` to submit patches. |