mirror/curl - curl - Collaboration & Inovation

mirror of https://github.com/curl/curl.git synced 2024-12-21 06:50:10 +08:00

Author	SHA1	Message	Date
Daniel Stenberg	87b6fe1695	BUG-BOUNTY.md: clarify the third party situation We do not pay bounties for problems in other libraries. Closes #13560	2024-05-14 16:23:42 +02:00
Daniel Stenberg	86d33001e4	reuse: add copyright + license info to individual docs/.md files Instead of use 'docs/.md' in dep5. For clarity and avoiding a wide- matching wildcard. + Remove mention of old files from .reuse/dep5 + add info to .github/dependabot.yml + make scripts/copyright.pl warn on non-matching patterns Closes #13245	2024-03-31 12:01:18 +02:00
Daniel Stenberg	2097a095c9	docs: use present tense avoid "will", detect "will" as a bad word in the CI Also line wrapped a bunch of paragraphs Closes #13001	2024-02-27 09:47:21 +01:00
Daniel Stenberg	8dbc3c7a6b	BUG-BOUNTY.md: clarify that the curl security team decides Closes #12975	2024-02-23 10:29:45 +01:00
Daniel Stenberg	fc1e42190f	docs: link to the website versions instead of markdowns ... to make the links work when the markdown is converted to webpages on https://curl.se Reported-by: Maurício Meneghini Fauth Fixes https://github.com/curl/curl-www/issues/272 Closes #11569	2023-08-02 00:47:41 +02:00
Daniel Stenberg	435acbd379	BUG-BOUNTY.md: mention the audit exception Dedicated - paid for - security audits that are performed in collaboration with curl developers are not eligible for bounties. (plus I changed the sub-titles to use ## instead of # in the markdown) Closes #8880	2022-05-19 11:14:54 +02:00
Daniel Stenberg	ba342909cc	SECURITY-PROCESS: extended Also clarify BUG-BOUNTY.md with IBB details. Closes #8754	2022-04-27 15:34:21 +02:00
Antoine Pietri	b341b7675b	docs: grammar proofread, typo fixes (Partially automated) proofread of most of the documentation, leading to various typo fixes. Closes #8353	2022-01-30 12:06:05 +01:00
Daniel Stenberg	a28464ae77	docs: reduce/avoid English contractions You're => You are Hasn't => Has not Doesn't => Does not Don't => Do not You'll => You will etc Closes #7930	2021-11-07 23:16:27 +01:00
Daniel Stenberg	a030c59c6d	BUG-BOUNTY: removed the cooperation mention	2021-02-03 14:24:25 +01:00
Daniel Stenberg	c4d88f89a9	BUG-BOUNTY: minor language update ... and remove the wording about entries from before 2019 as the "within 12 months" is still there and covers that. Closes #6318	2020-12-15 08:57:07 +01:00
Daniel Stenberg	a07f376861	BUG-BOUNTY: minor formatting fixes [ci skip]	2019-05-09 23:30:26 +02:00
Daniel Stenberg	489a4be12a	BUG-BOUNTY.md: add the Dropbox "bonus" extra payout ability [ci skip] Closes #3839	2019-05-09 10:03:47 +02:00
Reed Loden	361f9957cb	docs: minor polish to the bug bounty / security docs Closes #3811	2019-04-29 08:09:10 +02:00
Daniel Stenberg	10e4dd6a7b	docs/BUG-BOUNTY: bug bounty time [skip ci] Introducing the curl bug bounty program on hackerone. We now recommend filing security issues directly in the hackerone ticket system which only is readable to curl security team members. Assisted-by: Daniel Gustafsson Closes #3488	2019-04-22 17:19:19 +02:00
Daniel Stenberg	4a01a20bdb	SECURITY-PROCESS: bountygraph shuts down This backpedals back the documents to the state before bountygraph. Closes #3311	2018-11-30 22:50:36 +01:00
Daniel Stenberg	db1338474c	docs/BUG-BOUNTY: the sponsors actually decide the amount Retract the previous approach as the sponsors will be the ones to set the final amounts. Closes #3152 [ci skip]	2018-10-20 12:07:52 +02:00
Daniel Stenberg	aaab08311b	docs/BUG-BOUNTY.md: for vulns published since Aug 1st 2018 [ci skip]	2018-10-12 09:12:44 +02:00
Daniel Stenberg	af500e9378	docs/BUG-BOUNTY: proposed additional docs Bug bounty explainer. See https://bountygraph.com/programs/curl Closes #3067	2018-10-08 08:45:58 +02:00

19 Commits