diff options
-rw-r--r-- | README.md | 4 | ||||
-rw-r--r-- | SECURITY.md | 5 |
2 files changed, 3 insertions, 6 deletions
@@ -9,8 +9,6 @@ selective cherry-picking of directly-applicable patches, this repository has its own development and holds the base for a maintained platform to be used by XUL applications. -For a list of active projects making use of the Unified XUL Platform, checkout http://thereisonlyxul.org/. - ## Additional documentation Additional documentation relevant to this source code can be found in the `/docs` @@ -23,7 +21,7 @@ You are also always welcome to get in touch with our community on the [Pale Moon ### A note about trademarks and branding -Although this repository is licensed under Mozilla Public License v2.0, the +Although this repository is primarily licensed under Mozilla Public License v2.0, the trademarks and brands contained herein remain the property of their respective owners. For more details, please see the notifications in the respective directories. diff --git a/SECURITY.md b/SECURITY.md index 8ef8316746..8da448d59c 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -15,14 +15,14 @@ What should be considered vulnerabilities or security hazards by default: Generally not security vulnerabilities: - Null dereferencing crashes; -- Malware extensions (but please do report those on the forum in the extensions board!); +- Malware extensions (but please do report those on the forum in the add-ons board!); - Denial-of-service (AKA "evil trap sites") - Browser hangs - Issues with non-standard manual configuration (either at build time or by manipulating about:config directly) ## Reporting a Vulnerability -If you find an issue in UXP or the applications it builds on that could impact the security or safety of users please **do not** +If you find an issue in UXP, or the applications building on it, that could impact the security or safety of users please **do not** make an issue on Gitea about it. Gitea does not support restricted viewability for security sensitive bugs. If you want to report a security-sensitive issue then please go to the [forum](https://forum.palemoon.org) and report the issue @@ -33,4 +33,3 @@ except the recipient (not even moderators!). You will be informed via private message if the vulnerability report is accepted or declined, with reasoning. Security updates occur regularly and are given priority over most other development tasks. In general, they can be solved relatively quickly and will be included in the next point release (third digit if not rolled into a more major one). - |