diff options
| author | Neha Narula <narula@gmail.com> | 2019-06-03 09:41:48 -0400 |
|---|---|---|
| committer | Neha Narula <narula@gmail.com> | 2019-06-05 08:11:49 -0400 |
| commit | fdd7fa19a9fdc6f15208280201e0ce186e35a9c8 (patch) | |
| tree | d7a22f4f3325d73fbf49bac17d97fce25b8db52f /SECURITY.md | |
| parent | 52ec4c64e89f478cd2134dbf25f5987d39e9b8bc (diff) | |
| download | bitcoin-fdd7fa19a9fdc6f15208280201e0ce186e35a9c8.tar.xz | |
docs: create security policy
Github has started supporting SECURITY.md to contain a project's
security policy. Right now, the only place to find this project's
security contact is on bitcoincore.org. Adding this information to the
repository makes it easier to find as SECURITY.md becomes a standard.
This is copied almost exactly from https://bitcoincore.org/en/contact/
and based on conversations with Ethan Heilman.
Diffstat (limited to 'SECURITY.md')
| -rw-r--r-- | SECURITY.md | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000000..80b41030b7 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,25 @@ +# Security Policy + +## Supported Versions + +| Version | Supported | +| ------- | ------------------ | +| 0.18 | :white_check_mark: | +| 0.17 | :white_check_mark: | +| 0.16 | :white_check_mark: | +| 0.15 | :white_check_mark: | +| < 0.15 | :x: | + +## Reporting a Vulnerability + +To report security issues send an email to security@bitcoincore.org (not for support). + +The following keys may be used to communicate sensitive information to developers: + +| Name | Fingerprint | +|------|-------------| +| Wladimir van der Laan | 71A3 B167 3540 5025 D447 E8F2 7481 0B01 2346 C9A6 | +| Jonas Schnelli | 32EE 5C4C 3FA1 5CCA DB46 ABE5 29D4 BCB6 416F 53EC | +| Pieter Wuille | 133E AC17 9436 F14A 5CF1 B794 860F EB80 4E66 9320 | + +You can import a key by running the following command with that individual’s fingerprint: `gpg --recv-keys "<fingerprint>"` Ensure that you put quotes around fingerprints containing spaces. |