Skip to content

Update SECURITY.md#14

Merged
tscholak merged 2 commits into
mainfrom
tscholak/update-security-md
Oct 22, 2024
Merged

Update SECURITY.md#14
tscholak merged 2 commits into
mainfrom
tscholak/update-security-md

Conversation

@tscholak
Copy link
Copy Markdown
Collaborator

@tscholak tscholak commented Oct 21, 2024

✨ Description

Update the SECURITY.md file based on feedback from Sean.

🔍 Type of change

Select all that apply:

  • 🐛 Bug fix (non-breaking change that addresses a specific issue)
  • 🚀 New feature (non-breaking change that adds functionality)
  • ⚠️ Breaking change (a change that could affect existing functionality)
  • 📈 Performance improvement/optimization (improves speed, memory usage, or efficiency)
  • 🛠️ Code refactor (non-functional changes that improve code readability, structure, etc.)
  • 📦 Dependency bump (updates dependencies, including Dockerfile or package changes)
  • 📝 Documentation change (updates documentation, including new content or typo fixes)
  • 🔧 Infrastructure/Build change (affects build process, CI/CD, or dependencies)

📝 Changes

List the key changes introduced in this PR:

  1. Changed paragraph on how to submit a vulnerability. Now it asks to mail the Research team.

✅ Checklist

Make sure the following tasks are completed before submitting the PR:

General:

  • 📜 I have read and followed the contributing guidelines.
  • 🎉 The functionality is complete, and I have tested the changes.
  • 📝 I have updated the documentation if needed.
  • ⚠️ The change does not introduce any new issues (e.g., runtime warnings, type checker errors, linting problems, unhandled edge cases).
  • 🧩 I have commented my code, especially in hard-to-understand areas.

Dependencies and Configuration:

  • 🐋 I have updated the Docker configuration or dependencies, if applicable.
  • 🔄 I have ensured compatibility with the existing setup after dependency changes.

Testing:

  • 🧪 I have added or updated tests to cover my changes.
  • ✔️ New and existing tests pass locally with my changes.
  • 🚦 I have tested these changes on GPUs and verified training stability.
  • 🏋️ I have tested the changes on realistic training workloads, if applicable.

Performance Impact:

  • 📊 I have run benchmarks where applicable to evaluate the performance impact.
  • ✅ The benchmarks show no performance regression.
  • 🚀 The benchmarks indicate a potential performance improvement.
  • ⚠️ The benchmarks indicate a potential performance degradation.
  • 📈 I have provided benchmark results and detailed any performance impact below, if applicable.

📊 Performance Impact Details

N/A

📝 Additional Notes

N/A

@tscholak tscholak requested a review from jlamypoirier October 21, 2024 19:37
@tscholak tscholak merged commit 151738f into main Oct 22, 2024
@tscholak tscholak deleted the tscholak/update-security-md branch October 22, 2024 13:45
jlamypoirier added a commit that referenced this pull request May 6, 2026
@jlamypoirier @claude
gspo: address coarse-review easy items (#7, #13, #14)
8547a56 
- Drop unused self._preprocessing_config store in Trainer.setup.
- Replace torch.ones + index_add_ with torch.bincount for tok_sum
  in fused_gspo_loss_forward_backward.
- Drop load-bearing-sounding docs_per_step reference from the
  normalize_by_documents field description (no cross-config check
  exists to enforce it).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jlamypoirier jlamypoirier jlamypoirier approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@tscholak @jlamypoirier