[wp-meta] [Making WordPress.org] #6939: Reporting Security vulnerabilities in plugins
Making WordPress.org
noreply at wordpress.org
Wed Dec 11 09:11:23 UTC 2024
#6939: Reporting Security vulnerabilities in plugins
------------------------------+---------------------
Reporter: dd32 | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Plugin Directory | Resolution:
Keywords: 2nd-opinion |
------------------------------+---------------------
Comment (by JavierCasares):
What happens if the plugin has a way to report security issues? For
example, I use the GitHub reporting, or Patchstack has its own form for
some plugins...
I think there should be a way (maybe as said at
https://meta.trac.wordpress.org/ticket/7259#comment:15) in the readme.txt
to configure a "Security URL". If there is one, the link should be public
for everybody a link to that. If there is no link, I like the way it was
proposed.
--
Ticket URL: <https://meta.trac.wordpress.org/ticket/6939#comment:19>
Making WordPress.org <https://meta.trac.wordpress.org/>
Making WordPress.org
More information about the wp-meta
mailing list