[dpdk-dev] [PATCH] doc: prepare security process for vulnerabilities

Luca Boccassi bluca at debian.org
Wed May 8 00:38:57 CEST 2019


On Tue, 2019-05-07 at 18:02 +0200, Thomas Monjalon wrote:
> In case a vulnerability is discovered, the process to follow
> is described in this document.
> It has been inspired by the process of some referenced projects
> and with the help of experts from Intel, RedHat, Mellanox
> and the Linux Foundation.
> 
> Signed-off-by: Thomas Monjalon <
> thomas at monjalon.net
> >
> Signed-off-by: Maxime Coquelin <
> maxime.coquelin at redhat.com
> >
> Signed-off-by: Ferruh Yigit <
> ferruh.yigit at intel.com
> >
> ---
>  doc/guides/contributing/index.rst         |   1 +
>  doc/guides/contributing/vulnerability.rst | 316
> ++++++++++++++++++++++
>  2 files changed, 317 insertions(+)
>  create mode 100644 doc/guides/contributing/vulnerability.rst

I think at least the fingerprint of the GPG key to encrypt to, if a
link to the whole public key given the page is served over https,
should be on the  page.

Other than that, good stuff!

Acked-by: Luca Boccassi <bluca at debian.org>

-- 
Kind regards,
Luca Boccassi


More information about the dev mailing list