CERBERUS/caddy
1
0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2026-05-13 09:06:41 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Typo fix in security policy

Browse source
This commit is contained in:
Matthew Holt 2026-04-24 09:50:06 -06:00
parent 41aee97386
commit cf42f61566
No known key found for this signature in database
1 changed files with 3 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

4
.github/SECURITY.md vendored
View file

@ -8,7 +8,7 @@ The Caddy project would like to make sure that it stays on top of all relevant a
| Version | Supported | | Version | Supported |
| ----------- | ----------| | ----------- | ----------|
| 2.latest | ✔️ | | 2.latest | ✔️ |
| <= 2.latest | :x: | | < 2.latest | :x: |
## Acceptable Scope ## Acceptable Scope
@ -25,6 +25,8 @@ Client-side exploits are out of scope. In other words, it is not a bug in Caddy
Security bugs in code dependencies (including Go's standard library) are out of scope. Instead, if a dependency has patched a relevant security bug, please feel free to open a public issue or pull request to update that dependency in our code. Security bugs in code dependencies (including Go's standard library) are out of scope. Instead, if a dependency has patched a relevant security bug, please feel free to open a public issue or pull request to update that dependency in our code.
Many reports are not security bugs and can be addressed by updating the documentation.
We accept security reports and patches, but do not assign CVEs, for code that has not been released with a non-prerelease tag. We accept security reports and patches, but do not assign CVEs, for code that has not been released with a non-prerelease tag.