Skip to content

SECURITY.md: Use GitHub's private vulnerability reporting#1799

Merged
debarshiray merged 1 commit into
containers:mainfrom
debarshiray:wip/rishi/SECURITY.md-use-github-vulnerability-reporting
May 28, 2026
Merged

SECURITY.md: Use GitHub's private vulnerability reporting#1799
debarshiray merged 1 commit into
containers:mainfrom
debarshiray:wip/rishi/SECURITY.md-use-github-vulnerability-reporting

Conversation

@debarshiray
Copy link
Copy Markdown
Member

@debarshiray debarshiray commented May 28, 2026

The text is based on the previous security policy for the Containers projects [1] and GitHub's documentation for privately reporting a security vulnerability [2].

[1] https://github.com/containers/container-libs/blob/main/SECURITY.md

[2] https://docs.github.com/en/code-security/how-tos/report-and-fix-vulnerabilities/privately-reporting-a-security-vulnerability

#1763

gemini-code-assist[bot]
gemini-code-assist Bot reviewed May 28, 2026
View reviewed changes
Copy link
Copy Markdown

@gemini-code-assist gemini-code-assist Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request updates the SECURITY.md file to outline the process for reporting security vulnerabilities privately via GitHub and details the response policy of the maintainers. The review comments suggest minor improvements to capitalization ("GitHub") and phrasing to enhance readability.

Comment thread SECURITY.md Outdated
Comment thread SECURITY.md Outdated
@debarshiray debarshiray force-pushed the wip/rishi/SECURITY.md-use-github-vulnerability-reporting branch from 1a08d2c to 01ee2d5 Compare May 28, 2026 12:04
@debarshiray debarshiray force-pushed the wip/rishi/SECURITY.md-use-github-vulnerability-reporting branch from 01ee2d5 to df80e31 Compare May 28, 2026 12:13
@debarshiray debarshiray mentioned this pull request May 28, 2026
Closed
@centosinfra-prod-github-app
Copy link
Copy Markdown

centosinfra-prod-github-app Bot commented May 28, 2026

Build succeeded.
https://gateway-cloud-softwarefactory.apps.ocp.cloud.ci.centos.org/zuul/t/local/buildset/5ea336a40f7a48a591335e82c7f574d5

✔️ unit-test SUCCESS in 2m 13s
✔️ unit-test-migration-path-for-coreos-toolbox SUCCESS in 2m 58s
✔️ unit-test-restricted SUCCESS in 2m 15s
✔️ system-test-fedora-rawhide-commands-options SUCCESS in 40m 04s
✔️ system-test-fedora-rawhide-runtime-environment-arch-fedora SUCCESS in 28m 47s
✔️ system-test-fedora-rawhide-runtime-environment-ubuntu SUCCESS in 7m 13s
✔️ system-test-fedora-44-commands-options SUCCESS in 32m 01s
✔️ system-test-fedora-44-runtime-environment-arch-fedora SUCCESS in 23m 51s
✔️ system-test-fedora-44-runtime-environment-ubuntu SUCCESS in 6m 23s
✔️ system-test-fedora-43-commands-options SUCCESS in 32m 01s
✔️ system-test-fedora-43-runtime-environment-arch-fedora SUCCESS in 22m 51s
✔️ system-test-fedora-43-runtime-environment-ubuntu SUCCESS in 6m 30s
✔️ system-test-fedora-42-commands-options SUCCESS in 32m 10s
✔️ system-test-fedora-42-runtime-environment-arch-fedora SUCCESS in 23m 43s
✔️ system-test-fedora-42-runtime-environment-ubuntu SUCCESS in 6m 29s

@debarshiray debarshiray merged commit df80e31 into containers:main May 28, 2026
3 checks passed
@debarshiray debarshiray deleted the wip/rishi/SECURITY.md-use-github-vulnerability-reporting branch May 28, 2026 12:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@gemini-code-assist gemini-code-assist[bot] gemini-code-assist[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@debarshiray