From f7e5707943674117e525e7899f5b3b99de13ce06 Mon Sep 17 00:00:00 2001 From: Peter Yates Date: Sun, 18 Apr 2021 15:30:39 +0100 Subject: [PATCH] Add a short, concise security policy Using my company email address here as my DfE one will expire when my contract finishes. --- .github/security.md | 68 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 68 insertions(+) create mode 100644 .github/security.md diff --git a/.github/security.md b/.github/security.md new file mode 100644 index 00000000..8fac69b9 --- /dev/null +++ b/.github/security.md @@ -0,0 +1,68 @@ +# Security + +Security bugs are treated with special attention and will be handled with the +greatest priority. + +Send details to the contact address below, including: + +* the website, page or repository where the vulnerability can be observed +* a brief description of the vulnerability +* non-destructive exploitation details + +## Contact + +* Peter Yates (maintainer) - peter.yates@graphia.co.uk + +```pub +-----BEGIN PGP PUBLIC KEY BLOCK----- + +mQINBFDq1KkBEADBjrjzLHN4lGfWCobhhhLSJIRezgj+9U3sgBsW6uS2g3IVacu4 +VNnzisbuMYLn1m4LbWHXIAXbV4WIazzuIUX8vHkq8BKHVbV3//PiYpXE1Pxan5Xm +JuENEMtLn0cslTsGim7XMEaFp/uplRtyVAby4R9QwIJaJ3IYaFY99G8gJIYEfyw9 +itKekm+uidTfOfe8fVb5wg8OzagKCweE0HBP0E9NT12LlRysF3hDC9WoDUBVHWrJ +eV49wKznQXF2+N7j85rrFDJa436qNXIt3fG98CchOtFaiD1hSZeyjK1liCL0hAUT +7X8DXK4tjOw+XkPEvlokZMT9yXTEXRdIMetyjGTwnbUZGDI4PbqkOc0ROLEFAVo/ +H4k3B2h/mK4YuMaPV5VtewSc/4BYApIM/MlZ+tEnoToAuMJzX1muMFxyp3d3ExG6 +ov2z40wjnLYAra9vSzPe3m5FBo09nyy3Sh0BYYwDaOZ/wLIhZJkta3jyWkTeWnUk +9UzUMYyoOppFwXx0vBCRLk/wKdAm9tOZ2BDe4UA493i/wpgapdFunr9yNacQXbA9 +0n6A77KU8I8EqElPd2DGg2JSK8J6P59RbgpQGo8I2w8Qk4ytq/OM+7/vWkA1QTNf +Ks6m+FwCtYaOMSOVkyeJuXVrGXLowMVvpijIUQsNdA9PE+GbFNunWZh8VwARAQAB +tDVQZXRlciBZYXRlcyAoR3JhcGhpYSBMdGQpIDxwZXRlci55YXRlc0BncmFwaGlh +LmNvLnVrPokCTgQTAQgAOBYhBKhG8XdHA2ay/dBbA/Wp6K0qXFShBQJea/fJAhsD +BQsJCAcCBhUKCQgLAgQWAgMBAh4BAheAAAoJEPWp6K0qXFSht88P/26KsCihyIji +gOtMg0cszxJHiEfxR1BvA7Q0lmjGsymBtCcij8Gs/Eih9uwI2OhQbQa8pjbzaUCG +lPbyw7O4AbyjXmo+hVIPq0MTF1SO2VfvhUpve/7inqrhFuEplew5VXwtbituUSCJ +m0+/QSahkgQ+vtUfhatNl2GqRHgg1Tfik80IFRw21UzwFK9/uZzwQew9ZBntBe8D +b2FBy8yznlBrkO/2v1EpeHUlJz2Aq3X/uO0SBeOEqT521GPdmApBpCigVJgVwGre +FLKgegDT6XSq64wXo2E6DQH5PUC8Bfac9/XBEdqeEvyyj79mHkylKtSWLN6sPc24 +mZw4LU3sBBKuehm/VHM71JLR7/tyntlvq6UUxbsYBfCIm6ydNw4tXH0UCj1Jf73y +1L7aZVYP+tkK2gYXCzRfy8x3FrpsPPC57krgNkMZxHHn3E2dhte/OCJvMqoDhnHD +1ASYibB7cyOBQ4VDuAWA/+tKAZa2VCf2EZFl2AE0q8YzqfLeiYXyU1I2oDNeJV51 +A7/nMu/BWXEtlJMHtWkjVTsp9tNsujjKyr7cy2Tpa5uoCedZ1xkgD9pJxvj+rvwy +rYp/CtO7szoY7pr56lmn8+y+A8WJ1mAVROiu40xjP+lD02C4Xgbe9nz1UhDu2Edh +nR8RTU88FLvw6aMkbkdRCEXLHgzXB//puQINBFDq1KkBEACyMEVaMhC5AnBlH4LR +m+Zx/QnhxWgeJ6V6dGuVU2L4A6Ui6vYl7Z7w25OC0Z2j/85R8lucnZNO+vFpZ8sl +jUGw3Wm1t091TxFtqskGYFwZjb2hfVY8OqwOYfDChV1wh7dGhHJT+fZCyMcOCucO +r6B190rK3Qo4Xz7RXI40W9rZL7r99R3ax2jNW+gdswnokudoE6jlNBm1xmf6QsUK +f4Z+jsIs/LYyAW7hBIIxopeN4SHG86TPCbz7BtEQH7n27+rpyCDIgZkBkzrKNfU3 +mR1nVmxY53ti3iD9NvhkgV5pkAilNdXEEPwryiExJsrAN9PCoBF7CASxhGL71P4F +YWQnTwUFZN9647+EkBL0O601fqRs2rmZHb/bfyDe1C9ZEmoAIhQWb9SQzTYb4tQK +cG44jhcvtNo2WJ/R+ucvxTPyGjEeA5YjFWvyvrkkjfkD584hmf+S2M5oxhFU2t+4 +5j3yBvW55ud1VQ1oP6Q35/Xsvx19cVeWZXSONQYUgRYY1glgmlITaGS54Y1+pguS +x7DK0kjVVgRdLfVEF8h3RXTMXKAwcJk8O+XcebP4+cNbK9twDqM/fyGk2eqxH/ZB +t2KiRQXbdV+imtH6TzoAaNuKqdzNLFerHrx6zA6qjQ9jzhhsKkUHrH41qLh56xZF +vN7b8Wrhy+1Io1a/bEoLsQassQARAQABiQIfBBgBAgAJBQJQ6tSpAhsMAAoJEPWp +6K0qXFShkw4QAKr6sLssWs5p+d2jgRK9eddBBeFy51fQToZElt0+RGZafAxPdbG7 +UXtpldcUF2YnRTKP9wdPfzixLmZAsBOkxdZqA7+rFirYNxc168p9QJJAJNhYpwg/ +eMpD/nzvh8ED8mP7E2rWfO/tqduXqMSisx7PnWTrlDjchmKtzjNNrQ6syDqCMz+n +qrUvHbgfmqNGGl95jEDjfBlKGXdt4FX85ii61qkvQ2+WJVwro0eiyLU4+zZVDGi5 +stZvGbu6ZH5dofFub1zwsbMsV1h6smcME+yBkEue8YtOm+vh3B20T0CTIU/nXtfs ++Nnux7gFEgrQN6HOKOgTbnnCxF5ZFsk18lQarWkfcUQJR1HC1Mxfm0lHRXVVnKzK +6bMPDF6r+zPTAsHzvCrCCHZ9K+POnpXSIzUuokWmiVZYXR5QPy8HURLnkFxKUDc8 +bnFeDtE5/WETu5uXZZyjyiqq7gV1hcP9jYBaYfhWu3+DcmX+JOk8OmO/S1VZmQ0f +RXJfk04VSf866PH7BbSL8NoGxV9YsyK93QUH5JubYUCQU66Q6sx/cwAeJge+DH85 +CzJH9NoaLTCUFu5wGqyRQE8LugTvL0s5y4HnSM4BUtBSvbCI+ajOMMjh76/5hKx8 +0jzHsT4kXQ2+VGtTr77JLJ/sjEgu5stUNyHVtblQfOWCYPxz7VCFdZ8A +=JC54 +-----END PGP PUBLIC KEY BLOCK----- +```