New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add security to support options #11271
Merged
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This support option allows projects to specify a URL to the project's vulnerability disclosure policy (VDP).
ramsey
added a commit
to ramsey/packagist
that referenced
this pull request
Jan 14, 2023
This is a complementary feature for the security support option added in composer/composer#11271
Shame this doesn't seem to be returned as part of the GitHub API so we can't easily detect its presence without additional API calls.. Which is not really worth it IMO. But the feature looks good anyway for those who care to list their policy explicitly. Thanks! |
Seldaek
approved these changes
Jan 18, 2023
Seldaek
pushed a commit
to composer/packagist
that referenced
this pull request
Jan 18, 2023
This is a complementary feature for the security support option added in composer/composer#11271
stof
approved these changes
Jan 18, 2023
jrfnl
added a commit
to PHPCSStandards/PHP_CodeSniffer
that referenced
this pull request
Nov 21, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCSStandards/PHPCSDevTools
that referenced
this pull request
Nov 23, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
This was referenced Nov 23, 2023
jrfnl
added a commit
to PHPCSStandards/PHPCSUtils
that referenced
this pull request
Nov 23, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCSStandards/PHPCSExtra
that referenced
this pull request
Nov 23, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCompatibility/PHPCompatibility
that referenced
this pull request
Nov 23, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to Yoast/PHPUnit-Polyfills
that referenced
this pull request
Nov 24, 2023
This is a new feature available since Composer 2.6.0, which was released a few weeks ago. When this key is added, it will also show a link to the security policy on Packagist. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to Yoast/wp-test-utils
that referenced
this pull request
Nov 24, 2023
This is a new feature available since Composer 2.6.0, which was released a few weeks ago. When this key is added, it will also show a link to the security policy on Packagist. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to Yoast/yoastcs
that referenced
this pull request
Nov 24, 2023
This is a new feature available since Composer 2.6.0, which was released a few weeks ago. When this key is added, it will also show a link to the security policy on Packagist. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to Yoast/whip
that referenced
this pull request
Nov 24, 2023
This is a new feature available since Composer 2.6.0, which was released a few weeks ago. When this key is added, it will also show a link to the security policy on Packagist. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to Yoast/yoast-test-helper
that referenced
this pull request
Nov 24, 2023
This is a new feature available since Composer 2.6.0, which was released a few weeks ago. When this key is added, it will also show a link to the security policy on Packagist. Includes adding other missing "support" keys. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
1 task
jrfnl
added a commit
to Yoast/duplicate-post
that referenced
this pull request
Nov 24, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to Yoast/yoast-acf-analysis
that referenced
this pull request
Nov 24, 2023
This is a new feature available since Composer 2.6.0, which was released a few weeks ago. When this key is added, it will also show a link to the security policy on Packagist. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to Yoast/wordpress-seo
that referenced
this pull request
Nov 25, 2023
This is a new feature available since Composer 2.6.0, which was released a few weeks ago. When this key is added, it will also show a link to the security policy on Packagist. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
enricobattocchi
pushed a commit
to Yoast/yoast-test-helper
that referenced
this pull request
Nov 25, 2023
This is a new feature available since Composer 2.6.0, which was released a few weeks ago. When this key is added, it will also show a link to the security policy on Packagist. Includes adding other missing "support" keys. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCSStandards/composer-installer
that referenced
this pull request
Nov 26, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCompatibility/PHPCompatibilityMagento
that referenced
this pull request
Dec 2, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCSStandards/composer-installer
that referenced
this pull request
Dec 3, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCSStandards/PHP_CodeSniffer
that referenced
this pull request
Dec 4, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCompatibility/PHPCompatibilityParagonie
that referenced
this pull request
Dec 8, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCompatibility/PHPCompatibilityPasswordCompat
that referenced
this pull request
Dec 8, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCompatibility/PHPCompatibilitySymfony
that referenced
this pull request
Dec 8, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCompatibility/PHPCompatibilityJoomla
that referenced
this pull request
Dec 8, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCompatibility/PHPCompatibilityWP
that referenced
this pull request
Dec 8, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
jrfnl
added a commit
to PHPCompatibility/PHPCompatibilityAll
that referenced
this pull request
Dec 8, 2023
This is a new feature available since Composer 2.6.0, which was released a little while ago. When this key is added, it will also show a link to the security policy on Packagist. The security policy itself has been added to the organisation `.github` repository and can be accessed via the `security/policy` link on each repo. Refs: * https://github.com/composer/composer/releases/tag/2.6.0 * composer/composer#11271 * composer/packagist#1353
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This support option allows projects to specify a URL to the project's vulnerability disclosure policy (VDP).