(doc) Add security.md file #1902
Conversation
This replaces that current issue template that we have specifically for security related issues. Instead of starting to create a new issue, which is what happens currently, this will simply display the policy to the user.
gep13
requested review from
ferventcoder,
steviecoaster,
pauby,
adilio and
st3phhays
|
@pauby I actually thought the same. but from what I can see, I don't think we can control that 😢 |
|
@gep13 I thought we could. I think you can do it by naming the templates so they sit in alphabetical order you need - see https://github.com/chocolatey-community/chocolatey-package-requests/tree/master/.github/ISSUE_TEMPLATE |
|
@pauby yes, but this file that I just added, sits outside the ISSUE_TEMPLATE folder. It is at the root of the .github folder. |
|
So, it's not |
|
@ferventcoder as a side note, we have the often of moving these files (once we are happy with them) to a new |
To be fair, I did not check that 😄 |
|
I would also recommend adding a link to the security policy in the README.md (actually, github recommends it), as well as perhaps in the contribution guidelines. |
|
LGTM! |
This addition, changes the following:
To this:
Which, once you click on it, show the policy, rather than starting to create a new issue:
We might want to expand on the content a little bit. For example, this is what @AdmiringWorm (who I am stealing the idea from) is using:
https://github.com/WormieCorp/.github/blob/master/.github/SECURITY.md
And also another example here:
https://github.com/standard/.github/blob/master/SECURITY.md
Thoughts?