From bbf06d8ae31a1c2dc45d80c25a6aa98cf69cb2c0 Mon Sep 17 00:00:00 2001 From: Sviatoslav Sydorenko Date: Mon, 11 Sep 2023 16:38:50 +0200 Subject: [PATCH] Migrate security doc from RST to Markdown RST files are no longer correctly recognized by GitHub. --- .github/SECURITY.md | 32 ++++++++++++++++++++++++++++++++ .github/SECURITY.rst | 14 -------------- 2 files changed, 32 insertions(+), 14 deletions(-) create mode 100644 .github/SECURITY.md delete mode 100644 .github/SECURITY.rst diff --git a/.github/SECURITY.md b/.github/SECURITY.md new file mode 100644 index 0000000..9b93560 --- /dev/null +++ b/.github/SECURITY.md @@ -0,0 +1,32 @@ +# Security Policy + +**⚠️ Please do not file public GitHub issues for security +vulnerabilities as they are open for everyone to see! ⚠️** + +We encourage responsible disclosure practices for security +vulnerabilities. + + +## Supported Versions + +Always update to the latest version of +this Action to keep up with security patches. + + +## Reporting a Vulnerability + +If you believe you've found a security-related bug, we +prefer that you fill out a [vulnerability report on GitHub] +directly. + +[vulnerability report on GitHub]: +/pypa/gh-action-pypi-publish/security/advisories/new + + +## Don't have a GitHub account? + +Alternatively, drop an email to +``wk+gh-action-pypi-publish-security`` at ``sydorenko`` dot +``org`` dot ``ua`` instead of filing a ticket or posting to +_any_ public groups. We will try to assess the problem in +timely manner and disclose it in a responsible way. diff --git a/.github/SECURITY.rst b/.github/SECURITY.rst deleted file mode 100644 index c01d5e3..0000000 --- a/.github/SECURITY.rst +++ /dev/null @@ -1,14 +0,0 @@ -Security Policy ---------------- - -Supported Versions -================== - -Always update to the latest version of -this Action to keep up with security patches. - -Reporting a Vulnerability -========================= - -Email to ``wk+gh-action-pypi-publish-security`` -at ``sydorenko`` dot ``org`` dot ``ua``.