Skip to content

fix: add security team details #75

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Oct 31, 2025
Merged

fix: add security team details #75

merged 3 commits into from
Oct 31, 2025

Conversation

@TerryHowe
Copy link
Member

Similar to Helm, so details on security team procedures.

sabre1041
sabre1041 reviewed Oct 29, 2025
View reviewed changes
Copy link
Contributor

@sabre1041 sabre1041 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@TerryHowe this is really good. we should update the page to report vulnerabilities to include the new security mailing list.

Does anything related to the mailing list (ie membership etc) need to be added to this document?

@TerryHowe
Copy link
Member Author

We should update the page to report vulnerabilities to include the new security mailing list.

Done.

FeynmanZhou
FeynmanZhou reviewed Oct 29, 2025
View reviewed changes
sabre1041
sabre1041 reviewed Oct 30, 2025
View reviewed changes
Copy link
Contributor

@sabre1041 sabre1041 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Content looks good, thanks for the updates

Can you look into your DCO as it is currently failing validation

@TerryHowe @FeynmanZhou
Update SECURITY.md
ab3040f 
Co-authored-by: Feynman Zhou <[email protected]>
Signed-off-by: Terry Howe <[email protected]>
@TerryHowe
Copy link
Member Author

fixed the DCO issue

sabre1041
sabre1041 approved these changes Oct 31, 2025
View reviewed changes
Copy link
Contributor

@sabre1041 sabre1041 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@sabre1041 sabre1041 merged commit 58b3d38 into oras-project:main Oct 31, 2025
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sabre1041 sabre1041 sabre1041 approved these changes

@sajayantony sajayantony Awaiting requested review from sajayantony sajayantony is a code owner

@shizhMSFT shizhMSFT Awaiting requested review from shizhMSFT shizhMSFT is a code owner

@SteveLasker SteveLasker Awaiting requested review from SteveLasker SteveLasker is a code owner

+1 more reviewer

@FeynmanZhou FeynmanZhou FeynmanZhou left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@TerryHowe @sabre1041 @FeynmanZhou