The GitHub Actions job "Tests" on airflow.git has failed. Run started by GitHub user potiuk (triggered by potiuk).
Head commit for run: 618fbae2c615b998f400dc14ddc3089ce614559e / Jarek Potiuk <[email protected]> Improve readability and content of the security policy (#36023) Our security policy was quite a bit too long and to unstructured to provide good guideline for the Security Reporters. It was basically a wall of text where - even if you wanted - you could not easily find the part that you could be really interested in - for example assessing the severity of the issue or what happens after you reported the issue. The change is also not about the structure but also about the content that resulted from a number of discussions we had with securtity reporters - answering straight away the questions they had - for example how long they should wait for answer, how should they monitor if the CVE has been announced etc. etc. Having a structured form also allows to link to the particular sections of the policy in case someone had not read and follow it - having it structured and linkable, make it much more fair to a) expect they will be read, b) point out (including pointing out negligence by the reporter) to the particular section. That sounds fair and reasonable if made it clear and directly answering questions the reporters might have. Report URL: https://github.com/apache/airflow/actions/runs/7076241870 With regards, GitHub Actions via GitBox --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
