Merge remote-tracking branch 'origin/master'

author: Tuowen Zhao <ztuowen@gmail.com> 2021-11-06 15:47:31 -0600
committer: Tuowen Zhao <ztuowen@gmail.com> 2021-11-06 15:47:31 -0600
commit: 2a977876c6e85847652f097cc128e4ed5bec147a (patch)
tree: 4dba20c6aea6ea18723fa9e47b181580767aee37 /SECURITY.md
parent: fad92c603be0ff36825cc53bf8c485d4b95c7869 (diff)
parent: b2f35a7b98455b2bb8c7c3b11db6aa587e1d28bf (diff)
download: zsh-2a977876c6e85847652f097cc128e4ed5bec147a.tar.gz
zsh-2a977876c6e85847652f097cc128e4ed5bec147a.tar.bz2
zsh-2a977876c6e85847652f097cc128e4ed5bec147a.zip
1 files changed, 22 insertions, 0 deletions
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 000000000..cda53379f
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,22 @@
+# Security Policy
+
+## Supported Versions
+
+At the moment Oh My Zsh only considers the very latest commit to be supported.
+We combine that with our fast response to incidents, so risk is minimized.
+
+| Version        | Supported          |
+|:-------------- |:------------------ |
+| master         | :white_check_mark: |
+| other commits  | :x:                |
+
+In the near future we will introduce versioning, so expect this section to change.
+
+## Reporting a Vulnerability
+
+If you find a vulnerability, email all the maintainers directly at:
+
+- Robby: robby [at] planetargon.com
+- Marc: hello [at] mcornella.com
+
+**Do not open an issue or Pull Request directly**, because it might reveal the vulnerability.
author	Tuowen Zhao <ztuowen@gmail.com>	2021-11-06 15:47:31 -0600
committer	Tuowen Zhao <ztuowen@gmail.com>	2021-11-06 15:47:31 -0600
commit	2a977876c6e85847652f097cc128e4ed5bec147a (patch)
tree	4dba20c6aea6ea18723fa9e47b181580767aee37 /SECURITY.md
parent	fad92c603be0ff36825cc53bf8c485d4b95c7869 (diff)
parent	b2f35a7b98455b2bb8c7c3b11db6aa587e1d28bf (diff)
download	zsh-2a977876c6e85847652f097cc128e4ed5bec147a.tar.gz zsh-2a977876c6e85847652f097cc128e4ed5bec147a.tar.bz2 zsh-2a977876c6e85847652f097cc128e4ed5bec147a.zip