references/openproject
1
0
Fork 0
mirror of https://github.com/opf/openproject.git synced 2026-06-14 03:30:14 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add reference to advisory page in GitHub

Browse Source
This commit is contained in:
Oliver Günther
2024-05-22 11:18:54 +02:00
parent 039d05bb2b
commit a4298a0c4b
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docs/security-and-privacy/statement-on-security/README.md
+2
View File
@@ -51,6 +51,8 @@ If you can, please send us a PGP-encrypted email using the following key:
- Fingerprint BDCF E01E DE84 EA19 9AE1 72CE 7D66 9C6D 4753 3958
- You may also find the key [attached in our OpenProject repository.](security-at-openproject.com.asc)
You can also [report a vulnerability directly in GitHub](https://github.com/opf/openproject/security/advisories/new), if you prefer. In that case, please _also_ send an informal email to [security@openproject.com](mailto:security@openproject.com) with the link to the advisory, as GitHub notifications are sometimes hard to fully dig through, and we wouldn't want to miss your report.
Please include a description on how to reproduce the issue if possible. Our security team will get your email and will attempt to reproduce and fix the issue as soon as possible.
> **Please note:** OpenProject currently does not offer a bug bounty program. We will do our best to give you the appropriate credits for responsibly disclosing a security vulnerability to us. We will gladly reference your work, name, website on every publication we do related to the security update.