potiuk commented on PR #677: URL: https://github.com/apache/creadur-rat/pull/677#issuecomment-4815852574
Thanks for the careful review, @Claudenw and @ottlinger — really appreciate it. All six threads are addressed in a6978b8 and resolved: - ✅ `https` for the license URL - ✅ ASF license headers added to `AGENTS.md` and `SECURITY.md` - ✅ `SECURITY.md` `TBD` → short security-posture summary + a **Reporting a Vulnerability** section (points at [email protected]; detailed model stays in `THREAT_MODEL.md`) - ✅ §3 write-mode note now spells out that `--addLicense` inserts text from the operator-controlled license definition, not the scanned tree (thanks Claude for the "controlled input file" framing) - ✅ the Maven/Ant/CLI "generated front-ends" point was already captured in the §2 note — pointed there Should be good to go now — shout if anything else stands out. Thanks again! 🙏 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
