Skip to content

Update security policy and SLA#16303

Merged
seanbudd merged 3 commits into
masterfrom
update-sec-pol-sla
Apr 11, 2024
Merged

Update security policy and SLA#16303
seanbudd merged 3 commits into
masterfrom
update-sec-pol-sla

Conversation

@gerald-hartig

@gerald-hartig gerald-hartig commented Mar 14, 2024
edited
Loading

Copy link
Copy Markdown
Contributor

Link to issue number:

https://github.com/nvaccess/Internal-issue-tracking/issues/529

Summary of the issue:

Update security policy to clarify when security issues are submitted, for each severity level, what is our SLA, how many resources do we allocate, when do we release the patch & advisory?

Description of user facing changes

Documentation only: Security policy

Description of development approach

n/a

Testing strategy:

n/a

Known issues with pull request:

n/a

Code Review Checklist:

  • Documentation:
    • Change log entry
    • User Documentation
    • Developer / Technical Documentation
    • Context sensitive help for GUI changes

@gerald-hartig gerald-hartig requested review from a team as code owners March 14, 2024 04:51
@AppVeyorBot

AppVeyorBot commented Mar 14, 2024

Copy link
Copy Markdown

See test results for failed build of commit 447c366b72

CyrilleB79
CyrilleB79 reviewed Mar 14, 2024
View reviewed changes
Comment thread security.md Outdated
seanbudd
seanbudd approved these changes Mar 15, 2024
View reviewed changes

@seanbudd seanbudd left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good work @gerald-hartig

Comment thread security.md Outdated
Comment thread security.md Outdated
gerald-hartig and others added 2 commits March 15, 2024 11:17
@gerald-hartig @seanbudd
Split security advisory paragraph
e13e0cf 
Co-authored-by: Sean Budd <sean@nvaccess.org>
@gerald-hartig @seanbudd
Split planning & mitigation paragraphs
4d836cd 
Co-authored-by: Sean Budd <sean@nvaccess.org>
SaschaCowley
SaschaCowley approved these changes Mar 19, 2024
View reviewed changes
Comment thread security.md

@SaschaCowley SaschaCowley Mar 19, 2024

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good!

@seanbudd seanbudd merged commit e4ebdc5 into master Apr 11, 2024
@seanbudd seanbudd deleted the update-sec-pol-sla branch April 11, 2024 05:07
@nvaccessAuto nvaccessAuto added this to the 2024.2 milestone Apr 11, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@seanbudd seanbudd seanbudd approved these changes

@SaschaCowley SaschaCowley SaschaCowley approved these changes

@Qchristensen Qchristensen Awaiting requested review from Qchristensen Qchristensen is a code owner automatically assigned from nvaccess/userdocs

+1 more reviewer

@CyrilleB79 CyrilleB79 CyrilleB79 left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

2024.2

Development

Successfully merging this pull request may close these issues.

6 participants

@gerald-hartig @AppVeyorBot @seanbudd @SaschaCowley @CyrilleB79 @nvaccessAuto