delta/curl.git/docs/SECURITY-PROCESS.md, branch bagder/https-proxy-tests github.com: bagder/curl.git SECURITY-PROCESS: fix links [ci skip] 2019-05-11T15:50:37+00:00 Daniel Stenberg daniel@haxx.se 2019-05-11T15:50:37+00:00 b4988286a91452fab4991f925d88909c41d74285 






docs: minor polish to the bug bounty / security docs
2019-04-29T06:09:10+00:00

Reed Loden
reed@hackerone.com

2019-04-28T21:14:23+00:00

361f9957cbc3c12ff70705cc1cb754a603d1781f

Closes #3811





Closes #3811







docs/BUG-BOUNTY: bug bounty time [skip ci]
2019-04-22T15:19:19+00:00

Daniel Stenberg
daniel@haxx.se

2019-04-20T10:19:47+00:00

10e4dd6a7b3b2bc512223c4d94607f12443aab9f

Introducing the curl bug bounty program on hackerone. We now recommend
filing security issues directly in the hackerone ticket system which
only is readable to curl security team members.

Assisted-by: Daniel Gustafsson

Closes #3488





Introducing the curl bug bounty program on hackerone. We now recommend
filing security issues directly in the hackerone ticket system which
only is readable to curl security team members.

Assisted-by: Daniel Gustafsson

Closes #3488







SECURITY-PROCESS: bountygraph shuts down
2018-11-30T21:50:36+00:00

Daniel Stenberg
daniel@haxx.se

2018-11-26T10:37:49+00:00

4a01a20bdb2a6a3b855001543f3bc82edc8e5134

This backpedals back the documents to the state before bountygraph.

Closes #3311





This backpedals back the documents to the state before bountygraph.

Closes #3311







docs/SECURITY-PROCESS: the hackerone IBB program drops curl
2018-10-17T06:02:37+00:00

Daniel Stenberg
daniel@haxx.se

2018-10-17T06:02:37+00:00

1a0cf36fbf0034fb5dd56821ecc367f4794f43fc

... now there's only BountyGraph.





... now there's only BountyGraph.







SECURITY-PROCESS: make links into hyperlinks
2018-10-03T08:17:09+00:00

Daniel Gustafsson
daniel@yesql.se

2018-10-03T08:17:09+00:00

e9605dbda20555c3628da4d9914e8b5ddc6239a8

Use proper Markdown hyperlink format for the Bountygraph links in order
for the generated website page to be more user friendly. Also link to
the sponsors to give them a little extra credit.

Closes #3082
Reviewed-by: Daniel Stenberg <daniel@haxx.se>





Use proper Markdown hyperlink format for the Bountygraph links in order
for the generated website page to be more user friendly. Also link to
the sponsors to give them a little extra credit.

Closes #3082
Reviewed-by: Daniel Stenberg <daniel@haxx.se>







SECURITY-PROCESS: mention the bountygraph program [ci skip]
2018-09-22T10:00:00+00:00

Daniel Stenberg
daniel@haxx.se

2018-09-21T21:21:30+00:00

3cae1cd69924893b4ef6f9c7fe9ab1195ed48554

Closes #3032





Closes #3032







secure Openwall URLs
2018-09-14T18:48:35+00:00

Viktor Szakats
commit@vszakats.net

2018-09-14T18:48:35+00:00

420087bb306528530ebdbf7f7806312882b1adba












docs/SECURITY-PROCESS: now we name the files after the CVE id
2018-08-20T09:49:58+00:00

Daniel Stenberg
daniel@haxx.se

2018-08-20T09:49:58+00:00

a040ff88e4698bdee1eddc0cdb5a7fb65db49201












docs/SECURITY-PROCESS: mention bounty, drop pre-notify
2018-07-12T10:32:54+00:00

Daniel Stenberg
daniel@haxx.se

2018-07-12T10:32:54+00:00

29b78a537fc9602f974f8f7dfc5ae57b9df8d75e

+ The hackerone bounty and its process

- We don't and can't handle pre-notification





+ The hackerone bounty and its process

- We don't and can't handle pre-notification