Add codeowners and security files

cloud-gov · Jul 12, 2024 · dac56bb · dac56bb
1 parent 73dba3c
commit dac56bb
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 1 deletion.
diff --git a/CODEOWNERS b/CODEOWNERS
@@ -1,2 +1,2 @@
-* @cloud-gov/stratos-rebuild-18f
+* @cloud-gov/cloud-gov-team 
 
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,17 @@
+**Reporting Security Issues**
+
+Please refrain from reporting security vulnerabilities through public GitHub issues.
+
+Instead, kindly report them via the information provided in [cloud.gov's security.txt](https://cloud.gov/.well-known/security.txt).
+
+When reporting, include the following details (as much as possible) to help us understand the nature and extent of the potential issue:
+
+- Type of issue (e.g., buffer overflow, SQL injection, cross-site scripting, etc.)
+- Full paths of related source file(s)
+- Location of affected source code (tag/branch/commit or direct URL)
+- Any special configuration required to reproduce the issue
+- Step-by-step instructions to reproduce the issue
+- Proof-of-concept or exploit code (if available)
+- Impact of the issue, including potential exploitation by attackers
+
+Providing this information will facilitate a quicker triage of your report.
Original file line number	Diff line number	Diff line change
		@@ -1,2 +1,2 @@
		* @cloud-gov/stratos-rebuild-18f
		* @cloud-gov/cloud-gov-team