From f760e1caff077936c34a66145c7e9c13df4b83e0 Mon Sep 17 00:00:00 2001 From: Niels Lindenthal Date: Tue, 14 Mar 2017 13:44:03 +0100 Subject: [PATCH] [ci skip] Add section with security topics --- CONTRIBUTING.md | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index b793b1be8d..7d05d0a487 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -137,3 +137,9 @@ which are not labelled as `work in progress` by us. Contributors have to sign a CLA before contributing to OpenProject. The [CLA can be found here](https://www.openproject.org/wp-content/uploads/2015/08/Contributor-License-Agreement.pdf) and has to be filled out and sent to info@openproject.org. + +## Security + +If you notice a security issue in OpenProject, please send us a gpg encrypted email to security@openproject.org and describe the issue you found. Download our public gpg key [here](https://pgp.mit.edu/pks/lookup?op=get&search=0x7D669C6D47533958). + +Please include a description on how to reproduce the issue if possible. Our security team will get your email and will attempt to reproduce and fix the issue as soon as possible.