root: update security.md with github reporting link#16332
Conversation
✅ Deploy Preview for authentik-docs canceled.
|
✅ Deploy Preview for authentik-storybook canceled.
|
✅ Deploy Preview for authentik-integrations canceled.
|
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #16332 +/- ##
=======================================
Coverage 92.78% 92.78%
=======================================
Files 837 838 +1
Lines 45253 45290 +37
=======================================
+ Hits 41987 42024 +37
Misses 3266 3266
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
|
authentik PR Installation instructions Instructions for docker-composeAdd the following block to your AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-dbf2fc8f77efeaa9628938800e8c1647377567d5
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)sAfterwards, run the upgrade commands from the latest release notes. Instructions for KubernetesAdd the following block to your authentik:
outposts:
container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
global:
image:
repository: ghcr.io/goauthentik/dev-server
tag: gh-dbf2fc8f77efeaa9628938800e8c1647377567d5Afterwards, run the upgrade commands from the latest release notes. |
dominic-r
left a comment
There was a problem hiding this comment.
LGTM, but i'd like to see a consolidation of this and the doc eventually. Ima send u some potential cleaner wording that might regroup several sections
dominic-r
left a comment
There was a problem hiding this comment.
Let's not forget to update this section: https://docs.goauthentik.io/docs/security/policy/#reporting-a-vulnerability
That's pulled from 
|
🤦♂️🤦♂️ |
* main: providers/oauth2: avoid deadlock during session migration (#16361) lifecycle/aws: bump aws-cdk from 2.1025.0 to 2.1026.0 in /lifecycle/aws (#16352) core: bump github.com/stretchr/testify from 1.10.0 to 1.11.0 (#16357) core: bump axllent/mailpit from v1.27.5 to v1.27.6 in /tests/e2e (#16358) website/docs: fix missing trailing slash in vaultwarden documentation (#16348) root: fix security.md (#16345) root: update security.md with github reporting link (#16332) website/docs: 2025.8.1 release notes (#16343) packages/django-dramatiq-postgres: broker: fix various timing issues (#16340) website/docs: adds details to certificates doc (#16335) outposts: allow ingress path type configuration (#16339) core, web: update translations (#16321) outposts: fix service connection update task arguments (#16312) core: use email backend for test_email management command (#16311) core: bump astral-sh/uv from 0.8.12 to 0.8.13 (#16325) website: Move docs netlify.toml (#16320) website/docs: add link in 2025.8 rel notes to back-channel logout docs (#16306) packages/django-dramatiq-postgres: middleware: fix listening on hosts where ipv6 is not supported (#16308) website: Fix version origin detection, build-time URLs (#15774) web/a11y: Associating labels with inputs (#16119)
* Adds github reporting link * Applied suggestions * Improved wording * Improved wording
|
🍒 Cherry-pick to |
…) (#16395) Co-authored-by: Dewi Roberts <dewi@goauthentik.io>
Details
Closes #16323
Adds mention of how to report security issue via the github private security advisory feature.
Checklist
If applicable
make docs)