Download as
Browse Code »

Commit 8706890f9b8b5b743616b82e93407fb02a46e7e6

Authored by Jacob Vosmaer
1 parent ff7073ac
Exists in master and in 4 other branches 6-8-stable, 7-0-stable, 7-0-stable-spb, spb-stable

Refer to disclosure policy in CONTRIBUTING.md

Showing 1 changed file with 4 additions and 0 deletions   Show diff stats
CONTRIBUTING.md
  Diff comments   View file @8706890
@@ -5,6 +5,7 @@ This guide details how to use issues and pull requests to improve GitLab. @@ -5,6 +5,7 @@ This guide details how to use issues and pull requests to improve GitLab.
5 - [Closing policy for issues and pull requests](#closing-policy-for-issues-and-pull-requests) 5 - [Closing policy for issues and pull requests](#closing-policy-for-issues-and-pull-requests)
6 - [Issue tracker](#issue-tracker) 6 - [Issue tracker](#issue-tracker)
7 - [Pull requests](#pull-requests) 7 - [Pull requests](#pull-requests)
  8 +- [Security vulnerabilities](#security-vulnerabilities)
8 9
9 If you want to know how the GitLab team handles contributions have a look at [the GitLab contributing process](PROCESS.md). 10 If you want to know how the GitLab team handles contributions have a look at [the GitLab contributing process](PROCESS.md).
10 11
@@ -73,3 +74,6 @@ We will accept pull requests if: @@ -73,3 +74,6 @@ We will accept pull requests if:
73 * It is a single commit (please use `git rebase -i` to squash commits) 74 * It is a single commit (please use `git rebase -i` to squash commits)
74 75
75 For examples of feedback on pull requests please look at already [closed pull requests](https://github.com/gitlabhq/gitlabhq/pulls?direction=desc&page=1&sort=created&state=closed). 76 For examples of feedback on pull requests please look at already [closed pull requests](https://github.com/gitlabhq/gitlabhq/pulls?direction=desc&page=1&sort=created&state=closed).
  77 +
  78 +## Security vulnerabilities
  79 +Please report security vulnerabilities in private to support@gitlab.com; also see http://www.gitlab.com/disclosure/. Do NOT create GitHub issues for security vulnerabilities.