diff options
Diffstat (limited to 'SECURITY.md')
-rw-r--r-- | SECURITY.md | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/SECURITY.md b/SECURITY.md index 8ef8316746..8da448d59c 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -15,14 +15,14 @@ What should be considered vulnerabilities or security hazards by default: Generally not security vulnerabilities: - Null dereferencing crashes; -- Malware extensions (but please do report those on the forum in the extensions board!); +- Malware extensions (but please do report those on the forum in the add-ons board!); - Denial-of-service (AKA "evil trap sites") - Browser hangs - Issues with non-standard manual configuration (either at build time or by manipulating about:config directly) ## Reporting a Vulnerability -If you find an issue in UXP or the applications it builds on that could impact the security or safety of users please **do not** +If you find an issue in UXP, or the applications building on it, that could impact the security or safety of users please **do not** make an issue on Gitea about it. Gitea does not support restricted viewability for security sensitive bugs. If you want to report a security-sensitive issue then please go to the [forum](https://forum.palemoon.org) and report the issue @@ -33,4 +33,3 @@ except the recipient (not even moderators!). You will be informed via private message if the vulnerability report is accepted or declined, with reasoning. Security updates occur regularly and are given priority over most other development tasks. In general, they can be solved relatively quickly and will be included in the next point release (third digit if not rolled into a more major one). - |