diff --git a/SECURITY.md b/SECURITY.md index a7efef81c..e8b2d95f2 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,10 +1,10 @@ -# Reporting security issues +# Security -The Woodpecker maintainers take security seriously. +We take security seriously. If you discover a security issue, please bring it to their attention right away! ### Reporting a Vulnerability -Please **DO NOT** file a public issue, instead send your report privately to `security @ woodpecker-ci.org`. +Please **DO NOT** file a public issue, instead send your report privately to [`security @ woodpecker-ci.org`](mailto:security@woodpecker-ci.org). -Security reports are greatly appreciated and we will publicly thank you for it, although we keep your name confidential if you request it. +Security reports are greatly appreciated, and we will publicly thank you for it. If you choose to remain anonymous, we will respect your request and keep your name confidential. diff --git a/docs/docs/92-development/09-security.md b/docs/docs/92-development/09-security.md new file mode 100644 index 000000000..e8b2d95f2 --- /dev/null +++ b/docs/docs/92-development/09-security.md @@ -0,0 +1,10 @@ +# Security + +We take security seriously. +If you discover a security issue, please bring it to their attention right away! + +### Reporting a Vulnerability + +Please **DO NOT** file a public issue, instead send your report privately to [`security @ woodpecker-ci.org`](mailto:security@woodpecker-ci.org). + +Security reports are greatly appreciated, and we will publicly thank you for it. If you choose to remain anonymous, we will respect your request and keep your name confidential.