[incubator-hudi] branch asf-site updated: [HUDI-645] Provide a statement page to describe how to report security issues (#1361)

[smarthi]

This is an automated email from the ASF dual-hosted git repository.

smarthi pushed a commit to branch asf-site
in repository https://gitbox.apache.org/repos/asf/incubator-hudi.git


The following commit(s) were added to refs/heads/asf-site by this push:
     new 8938eec  [HUDI-645] Provide a statement page to describe how to report 
security issues (#1361)
8938eec is described below

commit 8938eec5508bb1c756824583998fb0567db22e28
Author: vinoyang <yanghua1...@gmail.com>
AuthorDate: Thu Feb 27 22:00:53 2020 +0800

    [HUDI-645] Provide a statement page to describe how to report security 
issues (#1361)
---
 docs/_config.yml           |  9 +++++++++
 docs/_pages/security.cn.md | 29 +++++++++++++++++++++++++++++
 docs/_pages/security.md    | 28 ++++++++++++++++++++++++++++
 3 files changed, 66 insertions(+)

diff --git a/docs/_config.yml b/docs/_config.yml
index e63fd83..bce12a7 100644
--- a/docs/_config.yml
+++ b/docs/_config.yml
@@ -58,6 +58,9 @@ author:
     - label: "Report Issues"
       icon: "fa fa-navicon"
       url: "https://issues.apache.org/jira/projects/HUDI/summary";
+    - label: "Report Security Issues"
+      icon: "fa fa-navicon"
+      url: "/security"
 
 cn_author:
   name             : "Quick Links"
@@ -81,6 +84,9 @@ cn_author:
     - label: "Report Issues"
       icon: "fa fa-navicon"
       url: "https://issues.apache.org/jira/projects/HUDI/summary";
+    - label: "Report Security Issues"
+      icon: "fa fa-navicon"
+      url: "/cn/security"
 
 
 0.5.0_author:
@@ -105,6 +111,9 @@ cn_author:
     - label: "Report Issues"
       icon: "fa fa-navicon"
       url: "https://issues.apache.org/jira/projects/HUDI/summary";
+    - label: "Report Security Issues"
+      icon: "fa fa-navicon"
+      url: "/security"
 
 
 # Layout Defaults
diff --git a/docs/_pages/security.cn.md b/docs/_pages/security.cn.md
new file mode 100644
index 0000000..b2e6877
--- /dev/null
+++ b/docs/_pages/security.cn.md
@@ -0,0 +1,29 @@
+---
+title: Security
+keywords: hudi, security
+permalink: /cn/security
+toc: true
+last_modified_at: 2019-12-30T15:59:57-04:00
+language: cn
+---
+
+## Reporting Security Issues
+
+The Apache Software Foundation takes a rigorous standpoint in annihilating the 
security issues in its software projects. Apache Hudi is highly sensitive and 
forthcoming to issues pertaining to its features and functionality.
+
+## Reporting Vulnerability
+
+If you have apprehensions regarding Hudi's security or you discover 
vulnerability or potential threat, don’t hesitate to get in touch with the 
[Apache Security Team](http://www.apache.org/security/) by dropping a mail at 
[secur...@apache.org](secur...@apache.org). In the mail, specify the 
description of the issue or potential threat. You are also urged to recommend 
the way to reproduce and replicate the issue. The Hudi community will get back 
to you after assessing and analysing the findings.
+
+**PLEASE PAY ATTENTION** to report the security issue on the security email 
before disclosing it on public domain.
+
+## Vulnerability Handling
+
+An overview of the vulnerability handling process is:
+
+* The reporter reports the vulnerability privately to Apache.
+* The appropriate project's security team works privately with the reporter to 
resolve the vulnerability.
+* A new release of the Apache product concerned is made that includes the fix.
+* The vulnerability is publically announced.
+
+A more detailed description of the process can be found 
[here](https://www.apache.org/security/committers.html).
\ No newline at end of file
diff --git a/docs/_pages/security.md b/docs/_pages/security.md
new file mode 100644
index 0000000..67898c2
--- /dev/null
+++ b/docs/_pages/security.md
@@ -0,0 +1,28 @@
+---
+title: Security
+keywords: hudi, security
+permalink: /security
+toc: true
+last_modified_at: 2019-12-30T15:59:57-04:00
+---
+
+## Reporting Security Issues
+
+The Apache Software Foundation takes a rigorous standpoint in annihilating the 
security issues in its software projects. Apache Hudi is highly sensitive and 
forthcoming to issues pertaining to its features and functionality.
+
+## Reporting Vulnerability
+
+If you have apprehensions regarding Hudi's security or you discover 
vulnerability or potential threat, don’t hesitate to get in touch with the 
[Apache Security Team](http://www.apache.org/security/) by dropping a mail at 
[secur...@apache.org](secur...@apache.org). In the mail, specify the 
description of the issue or potential threat. You are also urged to recommend 
the way to reproduce and replicate the issue. The Hudi community will get back 
to you after assessing and analysing the findings.
+
+**PLEASE PAY ATTENTION** to report the security issue on the security email 
before disclosing it on public domain.
+
+## Vulnerability Handling
+
+An overview of the vulnerability handling process is:
+
+* The reporter reports the vulnerability privately to Apache.
+* The appropriate project's security team works privately with the reporter to 
resolve the vulnerability.
+* A new release of the Apache product concerned is made that includes the fix.
+* The vulnerability is publically announced.
+
+A more detailed description of the process can be found 
[here](https://www.apache.org/security/committers.html).
\ No newline at end of file