Opened 15 years ago
Closed 14 years ago
#12919 closed (fixed)
Ticket submission page should direct security issues to django-security.
| Reported by: | Russell Keith-Magee | Owned by: | nobody |
|---|---|---|---|
| Component: | *.djangoproject.com | Version: | |
| Severity: | Keywords: | ||
| Cc: | Triage Stage: | Accepted | |
| Has patch: | no | Needs documentation: | no |
| Needs tests: | no | Patch needs improvement: | no |
| Easy pickings: | no | UI/UX: | no |
Description
The "Create New Ticket" page in Trac gives lots of helpful "read this first" advice,but doesn't give one very important piece of advice - that security issues shouldn't be reported in Trac. Sample text for a new bullet point:
"If you are reporting something that you think might be a security issue, *DON'T POST IT HERE* - mail security@…. [See Django's security reporting policy http://docs.djangoproject.com/en/dev/internals/contributing/#id2] for more details"
Change History (3)
comment:1 by , 15 years ago
| Triage Stage: | Unreviewed → Accepted |
|---|
comment:2 by , 15 years ago
| milestone: | 1.2 |
|---|
comment:3 by , 14 years ago
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
Note:
See TracTickets
for help on using tickets.
This is something we should do, but isn't critical to getting 1.2 out the door.