[wp-meta] [Making WordPress.org] #7259: Add a "Report a vulnerability" button/link to plugin repo pages
Making WordPress.org
noreply at wordpress.org
Thu Sep 7 16:49:02 UTC 2023
#7259: Add a "Report a vulnerability" button/link to plugin repo pages
------------------------------+---------------------
Reporter: mrfoxtalbot | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Plugin Directory | Resolution:
Keywords: |
------------------------------+---------------------
Comment (by TimothyBlynJacobs):
I think this needs to support a `readme.txt` field that can be a URL. Some
plugins use HackerOne or Patchstacks' VDP program for managing
vulnerabilities. Pointing security researchers to go to the .org team
first would be misleading.
--
Ticket URL: <https://meta.trac.wordpress.org/ticket/7259#comment:2>
Making WordPress.org <https://meta.trac.wordpress.org/>
Making WordPress.org
More information about the wp-meta
mailing list