Security Policy violation SECURITY.md
allstar-app opened this issue · comments
Security Policy SECURITY.md is out of compliance, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Issue created by Allstar. https://github.com/ossf/allstar
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
This one is a bit tricky since jcp has yet to release a major version, so the idea of back porting security fixes doesn't make a whole lot of sense. Would it be sufficient to just spell this out?
The important thing here are instructions / process for reporting a security vulnerability.
Supported versions / back-porting is more informational.
We should probably just link to envoy-security email list for private disclosures then
Likely not much will result in a CVE on this front anyway?
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
Updating issue after ping interval, status:
SECURITY.md not found.
Go to https://github.com/envoyproxy/java-control-plane/security/policy to enable.
In compliance, closing.