Merge pull request #40 from instructlab/lhawthorn-patch-1

Update SECURITY.md
instructlab · May 2, 2024 · 377ad68 · 377ad68
2 parents fbf3719 + 4600760
commit 377ad68
Showing 1 changed file with 1 addition and 19 deletions.
diff --git a/SECURITY.md b/SECURITY.md
@@ -1,19 +1 @@
-# Security and Disclosure Information Policy for the InstructLab Project
-
-The InstructLab team and community take security bugs seriously. We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions.
-
-## Reporting a Vulnerability
-
-If you think you've identified a security issue in an InstructLab project repository, please DO NOT report the issue publicly via the GitHub issue tracker, Slack Workspace, etc.
-
-Instead, send an email with as many details as possible to [instructlab-sec@osci.io](mailto:instructlab-sec@osci.io). This is a private mailing list for the core maintainers.
-
-Please do not create a public issue.
-
-## Security Vulnerability Response
-
-Each report is acknowledged and analyzed by the core maintainers within 3 working days.
-
-Any vulnerability information shared with core maintainers stays within the InstructLab project and will not be disseminated to other projects unless it is necessary to get the issue fixed.
-
-After the initial reply to your report, the security team will keep you informed of the progress towards a fix and full announcement, and may ask for additional information or guidance.
+You can find information on how to report a potential security vulnerability, as well as where to subscribe to receive security alerts, on the project's [Security Page](https://github.com/instructlab/.github/blob/main/SECURITY.md).