Conda-forge.github.io: Adding SECURITY.md

Created on 5 Aug 2019  路  4Comments  路  Source: conda-forge/conda-forge.github.io

GitHub added SECURITY.md earlier this year. It would be good to figure out if this is something we want to include in our repos, if so which ones, and what should be contained in it.

As one possibility, we might include a security policy in the docs here and have repos merely link to it (so as to cutdown churn and avoid staleness). There might be other good options though.

Discussion
Source
picture jakirkham

Most helpful comment

I guess this would be a question for the security and subsystem team 馃槈

cc @CJ-Wright @beckermr

picture jakirkham on 1 Apr 2020
😄2

All 4 comments

As one possibility, we might include a security policy in the docs here and have repos merely link to it (so as to cutdown churn and avoid staleness).

You can add it to https://github.com/conda-forge/.github

isuruf picture isuruf on 5 Aug 2019
👍1

Do we have a security policy at all? I am interested in hearing what we think the policy should be

scopatz picture scopatz on 5 Aug 2019

I guess this would be a question for the security and subsystem team 馃槈

cc @CJ-Wright @beckermr

jakirkham picture jakirkham on 1 Apr 2020
😄2

I'm no expert in systems or security. I'm just an interested party.

Most of my concerns center around the security of our own systems and accounts.

We could ask people to get in touch with us via an email address if they have concerns.

beckermr picture beckermr on 1 Apr 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

dharhas picture dharhas  路  3Comments
jschueller picture jschueller  路  6Comments
Cadair picture Cadair  路  5Comments
leofang picture leofang  路  5Comments
h-vetinari picture h-vetinari  路  4Comments