doc: document how to report security issues

Fix #3520
fedora-copr · Jan 6, 2025 · ee2d176 · ee2d176
1 parent b18d6e1
commit ee2d176
Show file tree

Hide file tree

Showing 3 changed files with 3 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -4,6 +4,7 @@
 [**Documentation**](https://docs.pagure.org/copr.copr/) |
 [**Report a Bug**](https://bugzilla.redhat.com/enter_bug.cgi?product=Copr) |
 [**Already reported bugs**](https://bugzilla.redhat.com/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=POST&bug_status=MODIFIED&bug_status=ON_DEV&bug_status=ON_QA&bug_status=VERIFIED&bug_status=RELEASE_PENDING&classification=Community&list_id=4678560&product=Copr&query_format=advanced) |
+[**Security issues**](https://github.com/fedora-copr/copr/security) |
 [**Fedora Copr**](https://copr.fedoraproject.org)
 
 Copr ("Community projects") is a service that builds your open-source projects and creates your own RPM repositories. See it in action [here](https://copr.fedoraproject.org).

diff --git a/doc/index.rst b/doc/index.rst
@@ -61,4 +61,5 @@ Want to File a Bug/RFE?
 
 * `Search for bugs here <https://bugzilla.redhat.com/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=POST&bug_status=MODIFIED&bug_status=ON_DEV&bug_status=ON_QA&bug_status=VERIFIED&bug_status=RELEASE_PENDING&classification=Community&list_id=2091774&product=Copr&query_format=advanced>`_: If it has, feel free to add yourself to Cc list of that bugzilla and add comments with more details, logs, etc.
 * `Report a new bug <https://bugzilla.redhat.com/enter_bug.cgi?product=Copr>`_: If it has not, then please report it here with all the detail you can muster.
+* `Report a security issue <https://github.com/fedora-copr/copr/security>`_: It is better to report privately, and make it public after the exploit is patched.
 * `Get a Bugzilla account <https://bugzilla.redhat.com/createaccount.cgi>`_: You will need an account in bugzilla to add comments or file new bugzillas.
diff --git a/frontend/coprs_frontend/coprs/templates/project_info.html b/frontend/coprs_frontend/coprs/templates/project_info.html
@@ -4,6 +4,7 @@
     <li><a href="https://github.com/fedora-copr/copr">Project Homepage</a></li>
     <li><a href="https://docs.pagure.org/copr.copr/user_documentation.html">User Documentation</a></li>
     <li><a href="https://github.com/fedora-copr/copr/issues/new">Report a Bug</a></li>
+    <li><a href="https://github.com/fedora-copr/copr/security">Report a security issue</a></li>
     <li><a href="https://github.com/fedora-copr/copr/issues">Known Issues</a></li>
     <li><a href="https://docs.pagure.org/copr.copr/user_documentation.html#faq">FAQ</a></li>
   </ul>