| #
a18680f5 |
| 05-Aug-2024 |
Daniel Stenberg |
VULN-DISCLOSURE-POLICY.md: small typo fix
|
| #
b715bb37 |
| 19-Jun-2024 |
Daniel Stenberg |
VULN-DISCLOSURE-POLICY: NULL dereferences and crashes
If a malicious server can trigger a NULL dereference in curl or
otherwise cause curl to crash (and nothing worse), chances are big t
VULN-DISCLOSURE-POLICY: NULL dereferences and crashes
If a malicious server can trigger a NULL dereference in curl or
otherwise cause curl to crash (and nothing worse), chances are big that
we do not consider that a security problem.
Closes #13974
show more ...
|
| #
86d33001 |
| 31-Mar-2024 |
Daniel Stenberg |
reuse: add copyright + license info to individual docs/*.md files
Instead of use 'docs/*.md' in dep5. For clarity and avoiding a wide-
matching wildcard.
+ Remove mention of old
reuse: add copyright + license info to individual docs/*.md files
Instead of use 'docs/*.md' in dep5. For clarity and avoiding a wide-
matching wildcard.
+ Remove mention of old files from .reuse/dep5
+ add info to .github/dependabot.yml
+ make scripts/copyright.pl warn on non-matching patterns
Closes #13245
show more ...
|
| #
39173f66 |
| 08-Mar-2024 |
Daniel Stenberg |
VULN-DISCLOSURE-POLICY.md: update detail about CVE requests
curl is a CNA now
Closes #13088
|
| #
2097a095 |
| 27-Feb-2024 |
Daniel Stenberg |
docs: use present tense
avoid "will", detect "will" as a bad word in the CI
Also line wrapped a bunch of paragraphs
Closes #13001
|
| #
e5000e79 |
| 23-Jan-2024 |
Daniel Stenberg |
GHA: add a job scanning for "bad words" in markdown
This means words, phrases or things we have decided not to use - words that
are spelled right according to the dictionary but we want
GHA: add a job scanning for "bad words" in markdown
This means words, phrases or things we have decided not to use - words that
are spelled right according to the dictionary but we want to avoid. In the
name of consistency and better documentation.
Closes #12764
show more ...
|
| #
9588528a |
| 11-Nov-2023 |
Daniel Stenberg |
VULN-DISCLOSURE-POLIC: remove broken link to hackerone
It should ideally soon not be done from hackerone anyway
Closes #12308
|
| #
2b16b86b |
| 06-Nov-2023 |
Daniel Stenberg |
VULN-DISCLOSURE-POLICY: escape sequences are not a security flaw
Closes #12278
|
| #
46d4ae5e |
| 14-Sep-2023 |
Daniel Stenberg |
SECURITY-PROCESS.md. call it vulnerability disclosure policy
SECURITY-PROCESS.md -> VULN-DISCLOSURE-POLICY.md
This a name commonly used for a document like this. This name helps
SECURITY-PROCESS.md. call it vulnerability disclosure policy
SECURITY-PROCESS.md -> VULN-DISCLOSURE-POLICY.md
This a name commonly used for a document like this. This name helps
users find it.
Closes #11852
show more ...
|
