Clarify advisory thread purpose as reporter coordination
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
This commit is contained in:
Jeffrey 'Alex' Clark
parent
80a91fdb4e
commit
6f815c2d8d
2
.github/INCIDENT_RESPONSE.md
vendored
2
.github/INCIDENT_RESPONSE.md
vendored
@ -198,7 +198,7 @@ After the fix is released and the advisory is public:
|
||||
## 8. Communication
|
||||
|
||||
### Internal (during embargo)
|
||||
- Use the **private GitHub Security Advisory** thread for all coordination.
|
||||
- Use the **private GitHub Security Advisory** thread for coordination with the reporter.
|
||||
- Do not discuss details in public issues, PRs, or Gitter/IRC channels.
|
||||
|
||||
### External (at or after disclosure)
|
||||
|
||||
Loading…
Reference in New Issue
Block a user