diff mbox series

[meta-ti,master/scarthgap/kirkstone] SECURITY: Add file

Message ID 20241115201509.23655-1-reatmon@ti.com
State Under Review
Delegated to: Ryan Eatmon
Headers show
Series [meta-ti,master/scarthgap/kirkstone] SECURITY: Add file | expand

Commit Message

Ryan Eatmon Nov. 15, 2024, 8:15 p.m. UTC
Add a SECURITY file with hints for security researchers and other
parties who might report potential security vulnerabilities.

Signed-off-by: Ryan Eatmon <reatmon@ti.com>
---
 meta-ti-bsp/SECURITY    | 21 +++++++++++++++++++++
 meta-ti-extras/SECURITY | 21 +++++++++++++++++++++
 2 files changed, 42 insertions(+)
 create mode 100644 meta-ti-bsp/SECURITY
 create mode 100644 meta-ti-extras/SECURITY

Comments

Denys Dmytriyenko Nov. 15, 2024, 8:36 p.m. UTC | #1
On Fri, Nov 15, 2024 at 02:15:09PM -0600, Ryan Eatmon via lists.yoctoproject.org wrote:
> Add a SECURITY file with hints for security researchers and other
> parties who might report potential security vulnerabilities.
> 
> Signed-off-by: Ryan Eatmon <reatmon@ti.com>

Acked-by: Denys Dmytriyenko <denys@konsulko.com>


> ---
>  meta-ti-bsp/SECURITY    | 21 +++++++++++++++++++++
>  meta-ti-extras/SECURITY | 21 +++++++++++++++++++++
>  2 files changed, 42 insertions(+)
>  create mode 100644 meta-ti-bsp/SECURITY
>  create mode 100644 meta-ti-extras/SECURITY
> 
> diff --git a/meta-ti-bsp/SECURITY b/meta-ti-bsp/SECURITY
> new file mode 100644
> index 00000000..784bb209
> --- /dev/null
> +++ b/meta-ti-bsp/SECURITY
> @@ -0,0 +1,21 @@
> +How to Report a Potential Vulnerability?
> +========================================
> +
> +If you would like to report a public issue (for example, one with a released
> +CVE number), please report it to the mailing list:
> +
> +  https://lists.yoctoproject.org/g/meta-ti
> +
> +If you are dealing with a not-yet released or urgent issue, please send a
> +message to one of the maintainers listed in the README.  Include as many
> +details as possible:
> +  - the layer or software module affected
> +  - the recipe and its version
> +  - any example code, if available
> +
> +Branches maintained with security fixes
> +---------------------------------------
> +
> +See https://wiki.yoctoproject.org/wiki/Releases for the list of current
> +releases.  We only accept patches for the LTS releases and the master branch.
> +
> diff --git a/meta-ti-extras/SECURITY b/meta-ti-extras/SECURITY
> new file mode 100644
> index 00000000..784bb209
> --- /dev/null
> +++ b/meta-ti-extras/SECURITY
> @@ -0,0 +1,21 @@
> +How to Report a Potential Vulnerability?
> +========================================
> +
> +If you would like to report a public issue (for example, one with a released
> +CVE number), please report it to the mailing list:
> +
> +  https://lists.yoctoproject.org/g/meta-ti
> +
> +If you are dealing with a not-yet released or urgent issue, please send a
> +message to one of the maintainers listed in the README.  Include as many
> +details as possible:
> +  - the layer or software module affected
> +  - the recipe and its version
> +  - any example code, if available
> +
> +Branches maintained with security fixes
> +---------------------------------------
> +
> +See https://wiki.yoctoproject.org/wiki/Releases for the list of current
> +releases.  We only accept patches for the LTS releases and the master branch.
> +
> -- 
> 2.17.1
diff mbox series

Patch

diff --git a/meta-ti-bsp/SECURITY b/meta-ti-bsp/SECURITY
new file mode 100644
index 00000000..784bb209
--- /dev/null
+++ b/meta-ti-bsp/SECURITY
@@ -0,0 +1,21 @@ 
+How to Report a Potential Vulnerability?
+========================================
+
+If you would like to report a public issue (for example, one with a released
+CVE number), please report it to the mailing list:
+
+  https://lists.yoctoproject.org/g/meta-ti
+
+If you are dealing with a not-yet released or urgent issue, please send a
+message to one of the maintainers listed in the README.  Include as many
+details as possible:
+  - the layer or software module affected
+  - the recipe and its version
+  - any example code, if available
+
+Branches maintained with security fixes
+---------------------------------------
+
+See https://wiki.yoctoproject.org/wiki/Releases for the list of current
+releases.  We only accept patches for the LTS releases and the master branch.
+
diff --git a/meta-ti-extras/SECURITY b/meta-ti-extras/SECURITY
new file mode 100644
index 00000000..784bb209
--- /dev/null
+++ b/meta-ti-extras/SECURITY
@@ -0,0 +1,21 @@ 
+How to Report a Potential Vulnerability?
+========================================
+
+If you would like to report a public issue (for example, one with a released
+CVE number), please report it to the mailing list:
+
+  https://lists.yoctoproject.org/g/meta-ti
+
+If you are dealing with a not-yet released or urgent issue, please send a
+message to one of the maintainers listed in the README.  Include as many
+details as possible:
+  - the layer or software module affected
+  - the recipe and its version
+  - any example code, if available
+
+Branches maintained with security fixes
+---------------------------------------
+
+See https://wiki.yoctoproject.org/wiki/Releases for the list of current
+releases.  We only accept patches for the LTS releases and the master branch.
+