Skip to content

Update security policy#211

Merged
k9withabone merged 3 commits into
mainfrom
security-policy
May 10, 2026
Merged

Update security policy#211
k9withabone merged 3 commits into
mainfrom
security-policy

Conversation

@k9withabone
Copy link
Copy Markdown
Member

@k9withabone k9withabone commented Apr 25, 2026

Added MAINTAINERS.md with contact information for the Podlet maintainers.

Changed SECURITY.md to direct security vulnerability reports to the Podlet maintainers.

Closes: #183

@k9withabone
docs(maintainers): add maintainers list
12bce0a 
Added `MAINTAINERS.md` at the request of the Podman maintainers. It
contains contact information for reporting security vulnerabilities if
the reporter does not have a GitHub account.

Signed-off-by: Paul Nettleton <k9@k9withabone.dev>
@k9withabone
docs(security): direct security reports to maintainers
26bc213 
Changed the security policy at the request of the Podman maintainers to
direct security vulnerability reports to the Podlet maintainers.

Closes: #183
Signed-off-by: Paul Nettleton <k9@k9withabone.dev>
@k9withabone k9withabone added this to the v0.3.2 milestone Apr 25, 2026
@k9withabone k9withabone added the documentation Improvements or additions to documentation label Apr 25, 2026
@k9withabone
Copy link
Copy Markdown
Member Author

k9withabone commented Apr 25, 2026

@Luap99 does the new security policy look good to you? I'll copy it over to compose_spec_rs (with the relevant modifications) once it is merged here.

@k9withabone k9withabone mentioned this pull request Apr 25, 2026
Open
Luap99
Luap99 reviewed Apr 27, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@Luap99 Luap99 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sure, LGTM. Thank you!

TomSweeneyRedHat
TomSweeneyRedHat reviewed Apr 27, 2026
View reviewed changes
Comment thread SECURITY.md Outdated
TomSweeneyRedHat
TomSweeneyRedHat reviewed Apr 27, 2026
View reviewed changes
Comment thread SECURITY.md Outdated
@TomSweeneyRedHat
Copy link
Copy Markdown
Member

TomSweeneyRedHat commented Apr 27, 2026

I really like where this is going, just a few suggestions to make it a bit more explicit.

@k9withabone
docs(security): more explicit report directions
7d86818 
Changed the wording in `SECURITY.md` and `MAINTAINERS.md` to be more
explicit in how to report a vulnerability (press the "Report a
vulnerability" button).

Signed-off-by: Paul Nettleton <k9@k9withabone.dev>
TomSweeneyRedHat
TomSweeneyRedHat reviewed Apr 28, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@TomSweeneyRedHat TomSweeneyRedHat left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM
TYVM for the changes!

TheRealBecks
TheRealBecks approved these changes May 10, 2026
View reviewed changes
Copy link
Copy Markdown
Collaborator

@TheRealBecks TheRealBecks left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👌

@k9withabone k9withabone merged commit 6b954c9 into main May 10, 2026
15 checks passed
@k9withabone k9withabone deleted the security-policy branch May 10, 2026 21:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Luap99 Luap99 Luap99 left review comments

@TheRealBecks TheRealBecks TheRealBecks approved these changes

+1 more reviewer

@TomSweeneyRedHat TomSweeneyRedHat TomSweeneyRedHat left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

documentation Improvements or additions to documentation

Projects

None yet

Milestone

v0.3.2

Development

Successfully merging this pull request may close these issues.

Change Security Policy to Direct to Podlet Maintainers and Add Maintainers List

4 participants

@k9withabone @TomSweeneyRedHat @TheRealBecks @Luap99