[
https://issues.apache.org/jira/browse/FINERACT-2680?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Edward Kang updated FINERACT-2680:
----------------------------------
Description:
[For fineract-consumer-facing GSOC Project 2026]
We need a SECURITY.md to inform users/bots about:
* POC status
* the security practices implemented by our new app
* how the app should be used in production
* adversary model
* specific attack types covered and not covered
* downstream responsiblities
* clarifies ASF release status
* defers to Fineract's upstream SECURITY.md for Fineract's own security
was:
[For fineract-consumer-facing GSOC Project 2026]
We need a SECURITY.md to inform users/bots about:
* the security best practices implemented by our new app
* how the app should be used in production
* what the limitations are
* POC status
> Create SECURITY.md for fineract-consumer-facing
> -----------------------------------------------
>
> Key: FINERACT-2680
> URL: https://issues.apache.org/jira/browse/FINERACT-2680
> Project: Apache Fineract
> Issue Type: Sub-task
> Reporter: Edward Kang
> Priority: Minor
>
> [For fineract-consumer-facing GSOC Project 2026]
>
> We need a SECURITY.md to inform users/bots about:
> * POC status
> * the security practices implemented by our new app
> * how the app should be used in production
> * adversary model
> * specific attack types covered and not covered
> * downstream responsiblities
> * clarifies ASF release status
> * defers to Fineract's upstream SECURITY.md for Fineract's own security
--
This message was sent by Atlassian Jira
(v8.20.10#820010)