Merge pull request #1179 from activerecord-hackery/security
Move security contact information to SECURITY.md
This commit is contained in:
commit
00a8e05273
|
@ -0,0 +1,12 @@
|
||||||
|
# Security Policy
|
||||||
|
|
||||||
|
## Supported Versions
|
||||||
|
|
||||||
|
At the moment, only the latest major.minor release stream is supported with
|
||||||
|
security updates.
|
||||||
|
|
||||||
|
## Reporting a Vulnerability
|
||||||
|
|
||||||
|
Please use the Tidelift security contact to [report a security
|
||||||
|
vulnerability](https://tidelift.com/security). Tidelift will coordinate the fix
|
||||||
|
and disclosure.
|
|
@ -891,12 +891,6 @@ both in the same application. If both are present, Ransack will default to
|
||||||
Active Record only. The logic is contained in
|
Active Record only. The logic is contained in
|
||||||
`Ransack::Adapters#instantiate_object_mapper` should you need to override it.
|
`Ransack::Adapters#instantiate_object_mapper` should you need to override it.
|
||||||
|
|
||||||
## Security contact information
|
|
||||||
|
|
||||||
Please use the Tidelift security contact to [report a security
|
|
||||||
vulnerability](https://tidelift.com/security). Tidelift will coordinate the fix
|
|
||||||
and disclosure.
|
|
||||||
|
|
||||||
## Semantic Versioning
|
## Semantic Versioning
|
||||||
|
|
||||||
Ransack attempts to follow semantic versioning in the format of `x.y.z`, where:
|
Ransack attempts to follow semantic versioning in the format of `x.y.z`, where:
|
||||||
|
|
Loading…
Reference in New Issue