Age | Commit message (Collapse) | Author | |
---|---|---|---|
2019-04-29 | docs: minor polish to the bug bounty / security docs | Reed Loden | |
Closes #3811 | |||
2019-04-22 | docs/BUG-BOUNTY: bug bounty time [skip ci] | Daniel Stenberg | |
Introducing the curl bug bounty program on hackerone. We now recommend filing security issues directly in the hackerone ticket system which only is readable to curl security team members. Assisted-by: Daniel Gustafsson Closes #3488 | |||
2018-11-30 | SECURITY-PROCESS: bountygraph shuts down | Daniel Stenberg | |
This backpedals back the documents to the state before bountygraph. Closes #3311 | |||
2018-10-17 | docs/SECURITY-PROCESS: the hackerone IBB program drops curl | Daniel Stenberg | |
... now there's only BountyGraph. | |||
2018-10-03 | SECURITY-PROCESS: make links into hyperlinks | Daniel Gustafsson | |
Use proper Markdown hyperlink format for the Bountygraph links in order for the generated website page to be more user friendly. Also link to the sponsors to give them a little extra credit. Closes #3082 Reviewed-by: Daniel Stenberg <daniel@haxx.se> | |||
2018-09-22 | SECURITY-PROCESS: mention the bountygraph program [ci skip] | Daniel Stenberg | |
Closes #3032 | |||
2018-09-14 | secure Openwall URLs | Viktor Szakats | |
2018-08-20 | docs/SECURITY-PROCESS: now we name the files after the CVE id | Daniel Stenberg | |
2018-07-12 | docs/SECURITY-PROCESS: mention bounty, drop pre-notify | Daniel Stenberg | |
+ The hackerone bounty and its process - We don't and can't handle pre-notification | |||
2018-03-14 | SECURITY-PROCESS: mention how we write/add advisories | Daniel Stenberg | |
2018-03-11 | docs/SECURITY.md -> docs/SECURITY-PROCESS.md | Daniel Stenberg | |