Skip to content

Improve Security Policy score#42481

Merged
julien-deramond merged 2 commits into
mainfrom
main-jd-security-policy-score-10
Jun 8, 2026
Merged

Improve Security Policy score#42481
julien-deramond merged 2 commits into
mainfrom
main-jd-security-policy-score-10

Conversation

@julien-deramond

@julien-deramond julien-deramond commented Jun 7, 2026
edited
Loading

Copy link
Copy Markdown
Member

Description

Our current score for the Security Policy is apparently 9/10.

To get the last one:

Security Policy Specific Text (1/10 points):

- Specific text providing basic or general information about vulnerability and disclosure practices, expectations, and/or timelines
- Text should include a total of 2 or more hits which match (case-insensitive) 
  - `vuln` and as in "Vulnerability" or "vulnerabilities";
  - `disclos` as "Disclosure" or "disclose";
  - and numbers which convey expectations of times, e.g., 30 days or 90 days

I reused the content of our Incident Response Plan, and linked it.

@github-project-automation github-project-automation Bot moved this to Inbox in v6.0.0 Jun 7, 2026
@julien-deramond julien-deramond marked this pull request as ready for review June 7, 2026 18:09
@julien-deramond julien-deramond requested a review from mdo June 7, 2026 18:09
@julien-deramond julien-deramond merged commit 9351fa5 into main Jun 8, 2026
12 of 13 checks passed
@julien-deramond julien-deramond deleted the main-jd-security-policy-score-10 branch June 8, 2026 04:33
julien-deramond added a commit that referenced this pull request Jun 8, 2026
@julien-deramond
Improve Security Policy score (#42481)
c6c1144
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mdo mdo mdo approved these changes

Assignees

No one assigned

Labels

backport-done backport-to-v6 docs v5

Projects

v6.0.0
Status: Inbox

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@julien-deramond @mdo