File tree Expand file tree Collapse file tree 1 file changed +25
-0
lines changed
Expand file tree Collapse file tree 1 file changed +25
-0
lines changed Original file line number Diff line number Diff line change 1+ # Security policy
2+
3+ ## What qualifies as a security issue
4+
5+ Credentials leakage, outdated dependencies with known vulnerabilities, and
6+ other issues that could lead to unprivileged or unauthorized access to the
7+ database or the system.
8+
9+ ## Reporting a vulnerability
10+
11+ The easiest way to report a security issue is through
12+ [ GitHub] ( https://github.com/canonical/postgresql-single-kernel-library/security/advisories/new ) . See
13+ [ Privately reporting a security
14+ vulnerability] ( https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing/privately-reporting-a-security-vulnerability )
15+ for instructions.
16+
17+ The repository admins will be notified of the issue and will work with you
18+ to determine whether the issue qualifies as a security issue and, if so, in
19+ which component. We will then handle figuring out a fix, getting a CVE
20+ assigned and coordinating the release of the fix.
21+
22+ The [ Ubuntu Security disclosure and embargo
23+ policy] ( https://ubuntu.com/security/disclosure-policy ) contains more
24+ information about what you can expect when you contact us, and what we
25+ expect from you.
You can’t perform that action at this time.
0 commit comments