Skip to content

Revise security policy for clarity and reporting#850

Merged
compwron merged 1 commit into
masterfrom
compwron-patch-1
Jul 12, 2026
Merged

Revise security policy for clarity and reporting#850
compwron merged 1 commit into
masterfrom
compwron-patch-1

Conversation

@compwron

Copy link
Copy Markdown
Collaborator

Updated the security policy to clarify supported versions and reporting process.

Updated the security policy to clarify supported versions and reporting process.
Copilot AI review requested due to automatic review settings July 12, 2026 07:10
@compwron
compwron merged commit f402470 into master Jul 12, 2026
13 checks passed
@compwron
compwron deleted the compwron-patch-1 branch July 12, 2026 07:10

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates the repository’s security policy document to clarify what versions are supported for security reporting and how to report vulnerabilities.

Changes:

  • Adds a new SECURITY.md with sections for supported versions and vulnerability reporting.
  • Documents the reporting contact address and expected triage/credit process.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread SECURITY.md

## Supported Versions

The current deployed version is eligible for security reports
Comment thread SECURITY.md

## Reporting a Vulnerability

Please report vulterabilities to flaredown at rubyforgood dot org and they will be triaged as soon as we can and give you public credit for useful reports.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants