Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

docs: update security policy scope #5360

Merged
merged 1 commit into from
May 3, 2023
Merged

docs: update security policy scope #5360

merged 1 commit into from
May 3, 2023

Conversation

seandiggity
Copy link
Contributor

Updates to Tari Vulnerability Disclosure Policy

Description

Adds one new example to Commonplace Reports, fixes a typo, and raises the top bounty reward to $5000 USD to better align with other programs

Motivation and Context

Public and internal discussion in regard to top bounty and reports received from Yat bounty program.

How Has This Been Tested?

n/a

What process can a PR reviewer use to test or verify this change?

n/a

Breaking Changes

  • None
  • Requires data directory on base node to be deleted
  • Requires hard fork
  • Other - Please specify

@seandiggity seandiggity changed the title docs: Update SECURITY.md policy scope docs: update security policy scope Apr 29, 2023
@ghpbot-tari-project ghpbot-tari-project added P-acks_required Process - Requires more ACKs or utACKs P-reviews_required Process - Requires a review from a lead maintainer to be merged labels Apr 29, 2023
@ghpbot-tari-project ghpbot-tari-project removed the P-reviews_required Process - Requires a review from a lead maintainer to be merged label May 2, 2023
@CjS77 CjS77 added the P-merge Process - Queued for merging label May 2, 2023
@CjS77
Copy link
Collaborator

CjS77 commented May 2, 2023

This is fine for now. Tari Labs is still considering a set of brackets that better align with industry norms at the very top end.

@seandiggity @CjS77
docs: Update SECURITY.md policy scope
8a35715 
Adds one new example to Commonplace Reports, fixes a typo, and raises the top bounty reward to $5000 USD to better align with other programs
@aviator-app aviator-app bot added the mq-failed label May 2, 2023
@CjS77
Copy link
Collaborator

CjS77 commented May 2, 2023

ACK

@ghpbot-tari-project ghpbot-tari-project removed the P-acks_required Process - Requires more ACKs or utACKs label May 2, 2023
@SWvheerden SWvheerden merged commit c72de0a into tari-project:development May 3, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@CjS77 CjS77 CjS77 approved these changes

@stringhandler stringhandler stringhandler approved these changes

@SWvheerden SWvheerden SWvheerden approved these changes

Assignees
No one assigned
Labels
mq-failed P-merge Process - Queued for merging
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@seandiggity @CjS77 @SWvheerden @stringhandler @ghpbot-tari-project