diff --git a/README.md b/README.md index 0074de4..7b6ed3a 100644 --- a/README.md +++ b/README.md @@ -80,6 +80,10 @@ Use `wp help redis ` to learn more about each command. See [CONTRIBUTING.md](https://github.com/pantheon-systems/wp-redis/blob/default/CONTRIBUTING.md) for information on contributing. +## Security Policy ## +### Reporting Security Bugs +Please report security bugs found in the WP Redis plugin's source code through the [Patchstack Vulnerability Disclosure Program](https://patchstack.com/database/vdp/wp-redis). The Patchstack team will assist you with verification, CVE assignment, and notify the developers of this plugin. + ## Frequently Asked Questions ## ### Why would I want to use this plugin? ### @@ -105,6 +109,7 @@ There's a known issue with WordPress `alloptions` cache design. Specifically, a ## Changelog ## ### 1.4.4-dev ### +* Updates security policy [[#441](https://github.com/pantheon-systems/wp-redis/pull/441)] ### 1.4.3 (June 26, 2023) ### * Bug fix: Fixes assumption that CACHE_PORT & CACHE_PASSWORD are Set. [[428](https://github.com/pantheon-systems/wp-redis/pull/428)] (props @timnolte) diff --git a/readme.txt b/readme.txt index 44f80fd..c8239c5 100644 --- a/readme.txt +++ b/readme.txt @@ -100,9 +100,13 @@ This declaration means use of `wp_cache_set( 'foo', 'bar', 'bad-actor' );` and ` There's a known issue with WordPress `alloptions` cache design. Specifically, a race condition between two requests can cause the object cache to have stale values. If you think you might be impacted by this, [review this GitHub issue](https://github.com/pantheon-systems/wp-redis/issues/221) for links to more context, including a workaround. += Where do I report security bugs found in this plugin? = +Please report security bugs found in the source code of the WP Redis plugin through the [Patchstack Vulnerability Disclosure Program](https://patchstack.com/database/vdp/wp-redis). The Patchstack team will assist you with verification, CVE assignment, and notify the developers of this plugin. + == Changelog == = 1.4.4-dev = +* Updates security policy [[#441](https://github.com/pantheon-systems/wp-redis/pull/441)] = 1.4.3 (June 26, 2023) = * Bug fix: Fixes assumption that CACHE_PORT & CACHE_PASSWORD are Set. [[428](https://github.com/pantheon-systems/wp-redis/pull/428)] (props @tnolte)