From 5ae310c42a9ba9ef08b81d645808eb4812dac28c Mon Sep 17 00:00:00 2001 From: Alexey Kuleshevich Date: Wed, 11 Sep 2024 19:29:47 -0600 Subject: [PATCH 1/2] Fix CODEOWNERS --- CODEOWNERS | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) diff --git a/CODEOWNERS b/CODEOWNERS index dc8a636cd87..90079c68769 100644 --- a/CODEOWNERS +++ b/CODEOWNERS @@ -1,7 +1,10 @@ # code owners are automatically assigned to review PRs # DevX -*.nix @input-output-hk/core-tech-devx @input-output-hk/core-tech-release -nix @input-output-hk/core-tech-devx @input-output-hk/core-tech-release -flake.lock @input-output-hk/core-tech-devx @input-output-hk/core-tech-release -.github @input-output-hk/core-tech-devx @input-output-hk/core-tech-release +*.nix @IntersectMBO/core-tech-devx +nix @IntersectMBO/core-tech-devx +flake.lock @IntersectMBO/core-tech-devx +.github @IntersectMBO/cardano-ledger-maintainers + + +* @IntersectMBO/cardano-ledger-maintainers From 94ab45fc74314e3f95d618dd64a2fde8931d0226 Mon Sep 17 00:00:00 2001 From: Alexey Kuleshevich Date: Thu, 12 Sep 2024 19:19:05 -0600 Subject: [PATCH 2/2] Update `SECURITY.md`. Resolve #4628 --- SECURITY.md | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) diff --git a/SECURITY.md b/SECURITY.md index b35604de249..2f786ed1a9e 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1 +1,18 @@ +# Security Policy + +## Reporting a Vulnerability + +Please report (suspected) security vulnerabilities to security@intersectmbo.org. You will receive a +response from us within 48 hours. If the issue is confirmed, we will release a patch as soon +as possible. + +Please provide a clear and concise description of the vulnerability, including: + +* the affected version(s) of OSC-documentation, +* steps that can be followed to exercise the vulnerability, +* any workarounds or mitigations + +If you have developed any code or utilities that can help demonstrate the suspected +vulnerability, please mention them in your email but ***DO NOT*** attempt to include them as +attachments as this may cause your Email to be blocked by spam filters. See the security file in the [Cardano engineering handbook](https://github.com/input-output-hk/cardano-engineering-handbook/blob/main/SECURITY.md).