doc: add cc oss-security@lists.openwall.com

This commit adds step to CC oss-security@lists.openwall.com as part of the security release process. PR-URL: #39191 Refs: nodejs/TSC#1047 Reviewed-By: Beth Griggs <bgriggs@redhat.com> Reviewed-By: Richard Lau <rlau@redhat.com> Reviewed-By: Michael Dawson <midawson@redhat.com>
nodejs · Sep 4, 2021 · fa39095 · fa39095
1 parent 52105ac
commit fa39095
Showing 1 changed file with 6 additions and 4 deletions.
diff --git a/doc/guides/security-release-process.md b/doc/guides/security-release-process.md
@@ -43,9 +43,10 @@ information described.
   * Described in the pre/post announcements
 
 * [ ] Pre-release announcement [email][]: ***LINK TO EMAIL***
+   * CC: `oss-security@lists.openwall.com`
+   * Subject: `Node.js security updates for all active release lines, Month Year`
+   * Body:
   ```text
-  Security updates for all active release lines, Month Year
-
   The Node.js project will release new versions of all supported release lines on or shortly after Day of week, Month Day of Month, Year
   For more information see: https://nodejs.org/en/blog/vulnerability/month-year-security-releases/
   ```
@@ -75,9 +76,10 @@ information described.
 * [ ] [Unlock CI](https://github.com/nodejs/build/blob/HEAD/doc/jenkins-guide.md#after-the-release)
 
 * [ ] Post-release announcement in reply [email][]: ***LINK TO EMAIL***
+   * CC: `oss-security@lists.openwall.com`
+   * Subject: `Node.js security updates for all active release lines, Month Year`
+   * Body:
   ```text
-  Security updates for all active release lines, Month Year
-
   The Node.js project has now released new versions of all supported release lines.
   For more information see: https://nodejs.org/en/blog/vulnerability/month-year-security-releases/
   ```