Skip to content

Commit 61a19e6

Browse files
justinchubyjustinchuby
authored
Create SECURITY.md (#9)
Signed-off-by: Justin Chu <[email protected]>
1 parent b2d18b1 commit 61a19e6

File tree

1 file changed

+13
-0
lines changed

1 file changed

+13
-0
lines changed

SECURITY.md

Lines changed: 13 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,13 @@
1+
# Security Policy
2+
3+
## Reporting a Vulnerability
4+
If you think you have found a security vulnerability, please send a report to [email protected]. Please do not post security vulnerabilities on Slack.
5+
6+
We don't currently have a PGP key, unfortunately.
7+
8+
An ONNX committer will send you a response indicating the next steps in handling your report. After the initial reply to your report, the committer will keep you informed of the progress towards a fix and full announcement, and may ask for additional information or guidance.
9+
10+
Important: Please don't disclose the vulnerability before it has been fixed and announced, to protect our users.
11+
12+
## Security announcements
13+
Please subscribe to the [announcements mailing list](https://lists.lfaidata.foundation/g/onnx-announce), where we post notifications and remediation details for security vulnerabilities.

0 commit comments

Comments
 (0)