Skip to content

Commit

Permalink
Add Vulnerability Reporting Policy
Browse files Browse the repository at this point in the history 
This commit updates SECURITY.md to inform contributors and users of
the Vulnerability Reporting Policy for the Time Graph.

Signed-off-by: Hoang Thuan Pham <hoang.pham@calian.ca>
  • Loading branch information
@hoangphamEclipse @bhufmann
hoangphamEclipse authored and bhufmann committed Apr 5, 2022
1 parent df03a2d commit 73ab824
Showing 1 changed file with 6 additions and 1 deletion.
7 changes: 6 additions & 1 deletion SECURITY.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,4 +13,9 @@ This shall be determined once releases start, the resulting table shall look lik

## Reporting a Vulnerability

Report a vulnerability by opening an issue.
If you think or suspect that you have discovered a new security vulnerability in this project, please __do not__ disclose it on GitHub, e.g. in an issue, a PR, or a discussion. Any such disclosure will be removed/deleted on sight, to promote orderly disclosure, as per the [Eclipse Foundation Vulnerability Reporting Policy][policy].

Instead, please report any potential vulnerability to the Eclipse Foundation [Security Team][security]. Make sure to provide a concise description of the issue, a CWE, and other supporting information.

[policy]: https://www.eclipse.org/security/policy.php
[security]: https://www.eclipse.org/security

0 comments on commit 73ab824

Please sign in to comment.