Skip to content

Commit dd5e23f

Browse files
UlisesGasconUlisesGascon
authored
docs: mention the Express Threat Model
Added a section on the Express Threat Model to the security policy. Related: expressjs/express#6570 (review)
1 parent 3394295 commit dd5e23f

File tree

1 file changed

+5
-0
lines changed

1 file changed

+5
-0
lines changed

SECURITY.md

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,7 @@ project.
66
* [Reporting a Bug or Security Vulnerability](#reporting-a-bug-or-security-vulnerability)
77
* [Disclosure Policy](#disclosure-policy)
88
* [Comments on this Policy](#comments-on-this-policy)
9+
* [The Express Threat Model](#the-express-threat-model)
910

1011
## Reporting a Bug or Security Vulnerability
1112

@@ -71,3 +72,7 @@ involving the following steps:
7172

7273
If you have suggestions on how this process could be improved please submit a
7374
pull request.
75+
76+
## The Express Threat Model
77+
78+
The most updated version can be found [here](https://github.com/expressjs/security-wg/blob/main/docs/ThreatModel.md)

0 commit comments

Comments
 (0)