1
0
Fork 0
mirror of https://git.tukaani.org/xz.git synced 2024-04-04 12:36:23 +02:00

Docs: Simplify SECURITY.md.

This commit is contained in:
Jia Tan 2024-03-26 01:50:02 +08:00
parent 0b99783d63
commit af071ef770

8
.github/SECURITY.md vendored
View file

@ -16,13 +16,7 @@ the chance that the exploit will be used before a patch is released.
You may submit a report by emailing us at You may submit a report by emailing us at
[xz@tukaani.org](mailto:xz@tukaani.org), or through [xz@tukaani.org](mailto:xz@tukaani.org), or through
[Security Advisories](https://github.com/tukaani-project/xz/security/advisories/new). [Security Advisories](https://github.com/tukaani-project/xz/security/advisories/new).
While both options are available, we prefer email. In any case, please While both options are available, we prefer email.
provide a clear description of the vulnerability including:
- Affected versions of XZ Utils
- Estimated severity (low, moderate, high, critical)
- Steps to recreate the vulnerability
- All relevant files (core dumps, build logs, input files, etc.)
This project is maintained by a team of volunteers on a reasonable-effort This project is maintained by a team of volunteers on a reasonable-effort
basis. As such, please give us 90 days to work on a fix before basis. As such, please give us 90 days to work on a fix before