Skip to content

Responsible disclosure policy #110

New issue
New issue
Open
Open
Responsible disclosure policy#110
Labels
documentationDocumentationprocessAbout the way we work
Milestone
 
1.0
@cornelius

Description

@cornelius
cornelius
opened on Mar 13, 2019

We need a policy defining how security issues in our code can be reported to us, i.e. we need a responsible disclosure policy.

One example illustrating why this is needed and what are the important points is described in Cory Field's post about disclosing a vulnerability in Bitcoin Cash.

Having a security@ email address is part of that (see #39).

Activity

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    documentationDocumentationprocessAbout the way we work

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions