Skip to content

chore: add SECURITY.md#74

Merged
noahho merged 3 commits into
mainfrom
chore/add-security-md
May 15, 2026
Merged

chore: add SECURITY.md#74
noahho merged 3 commits into
mainfrom
chore/add-security-md

Conversation

@noahho
Copy link
Copy Markdown
Collaborator

@noahho noahho commented May 15, 2026

Summary

  • Add SECURITY.md pointing reports to security@priorlabs.ai. GitHub auto-renders this as the "Report a vulnerability" link on the repo's Security tab.

🤖 Generated with Claude Code

@noahho @claude
chore: add SECURITY.md pointing to security@priorlabs.ai
d9f6950 
GitHub auto-renders this as the "Report a vulnerability" link on the
repo's Security tab, giving researchers an obvious place to send
disclosure reports.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
gemini-code-assist[bot]
gemini-code-assist Bot reviewed May 15, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@gemini-code-assist gemini-code-assist Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request introduces a SECURITY.md file to establish a security reporting process. The reviewer suggested enhancing the document by adding a 'Supported Versions' section and improving the formatting with a mailto link for better usability.

Comment thread SECURITY.md Outdated
noahho and others added 2 commits May 15, 2026 23:35
@noahho @claude
docs(security): add Supported Versions section per review
103cd97 
Per PR review: include an explicit Supported Versions policy. Stating
'most recent minor only' is honest about our actual maintenance posture
and avoids the misleading generic template (3.x/2.x) that the upstream
bot suggested verbatim.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@noahho
docs(security): soften disclosure language per review
22b9a13 
Change 'Don't file public GitHub issues' to the more formal
'Please do not report security vulnerabilities via public GitHub
issues.' Matches the tone of the rest of the policy.
@noahho noahho requested a review from a team as a code owner May 15, 2026 21:49
@noahho noahho requested review from alanprior and removed request for a team May 15, 2026 21:49
@noahho noahho merged commit 451c361 into main May 15, 2026
9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@alanprior alanprior alanprior approved these changes

+1 more reviewer

@gemini-code-assist gemini-code-assist[bot] gemini-code-assist[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@noahho @alanprior