Security and software vulnerabilities

From semantic-mediawiki.org

The Semantic MediaWiki project is cautious about security aspects and strives to eliminate any possible vulnerabilities in its maintained software.

Reporting a vulnerability[edit]

Please report security vulnerabilities privately through GitHub's private vulnerability reporting, not through public issues, pull requests, or wiki pages. See the security policy for details.

Special care is needed to minimize the exploitation risk while a fix is being prepared. The project is public and can be monitored by potential attackers, so please avoid describing a vulnerability in public channels, including commit messages such as "Fixed critical security vulnerability", until a fixed version has been released. For more information on handling security problems in open-source software, see Producing Open Source Software, Chapter 6. Communications: Announcing Security Vulnerabilities.

See also[edit]

Detailed information on how to report bugs.

Retrieved from "https://www.semantic-mediawiki.org/w/index.php?title=Security_and_software_vulnerabilities&oldid=91447"
  • "Attribution 3.0 Germany" (CC BY 3.0 DE)
  • Powered by MediaWiki
  • Powered by Semantic MediaWiki