From 97e7a21d7604f782e7b03f3219816664288749bd Mon Sep 17 00:00:00 2001 From: Oleg Nenashev Date: Sat, 20 Jul 2024 10:54:37 +0200 Subject: [PATCH 1/3] Add the Security page stub --- SECURITY.md | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000..cfd180c --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,16 @@ +# Security Policy + +## Reporting Security Issues + +You can submit any security issue or suspected vulnerability +on the GitHub Security pages of the project. +Please do **NOT** use public GitHub Issues for reporting vulnerabilities. + +## Bug Bounty + +Unless documented explicitly, +GradleUp projects are not a part of +any security bug bounty program and, +as of now, of any other program. + +For confirmed issues, we will be happy to credit you in the public Security Advisory and on social media. From cfceaf11b39a3cd3ebcb967575bec925f23bc15f Mon Sep 17 00:00:00 2001 From: Oleg Nenashev Date: Sat, 20 Jul 2024 10:54:47 +0200 Subject: [PATCH 2/3] Add the Support page stub --- SUPPORT.md | 45 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 SUPPORT.md diff --git a/SUPPORT.md b/SUPPORT.md new file mode 100644 index 0000000..8f67716 --- /dev/null +++ b/SUPPORT.md @@ -0,0 +1,45 @@ +# Support for GradleUp projects + +Any bug reports, feature requests and comments are welcome! +The project keeps evolving, +and any feedback from end users and developers will be appreciated. +At the moment, there is no public Slack channel, + +## Raising Issues and Feature Requests + +Use GitHub Issues. +Note that it may take some time to get a response, thanks for your patience. +Contributions are always welcome, see the Contributor Guidelines. + +## Reporting Security Issues + +Please do NOT use public GitHub Issues for reporting vulnerabilities. +You can submit any security issue or suspected vulnerability on GitHub Security pages, +which are available in project repositories. +Read More - [Security Policy](./SECURITY.md). + +## Setting Expectations + +GradleUp is a community driven project, +most of contributors and maintainers invest their personal time. +We do not guarantee a response or resolution +time for the submitted issues. +As it is written in the Apache License v2: + +> Licensor provides the Work (and each Contributor provides its Contributions) +> on an "AS IS" BASIS, +> WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or +> implied, including, without limitation, any warranties or conditions +> of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A +> PARTICULAR PURPOSE. You are solely responsible for determining the +> appropriateness of using or redistributing the Work and assume any +> risks associated with Your exercise of permissions under this License. + +## Commercial Support and Customization + +The GradleUp projects prioritize the community support with a best effort, +but do not provide any guarantees or SLAs. +Maintainers of the GradleUp projects **might** be available for additional consulting. +Do not hesitate reaching out to them. + +**Protip:** Supporting the work of maintainers and contributors on GitHub Sponsors and other platforms is always appreciated. From b9cb2959b4cf40e33cb595424227d9855ed6487a Mon Sep 17 00:00:00 2001 From: Oleg Nenashev Date: Sun, 28 Jul 2024 07:26:01 +0200 Subject: [PATCH 3/3] Apply suggestions from code review Co-authored-by: Martin Bonnin --- SUPPORT.md | 1 - 1 file changed, 1 deletion(-) diff --git a/SUPPORT.md b/SUPPORT.md index 8f67716..7efa0f3 100644 --- a/SUPPORT.md +++ b/SUPPORT.md @@ -3,7 +3,6 @@ Any bug reports, feature requests and comments are welcome! The project keeps evolving, and any feedback from end users and developers will be appreciated. -At the moment, there is no public Slack channel, ## Raising Issues and Feature Requests