SECURITY: Add readme file for security issue reporting

Signed-off-by: Khem Raj <[email protected]>
kraj · Nov 20, 2024 · 458566f · 458566f
1 parent 9dc2588
commit 458566f
Showing 1 changed file with 20 additions and 0 deletions.
diff --git a/SECURITY b/SECURITY
@@ -0,0 +1,20 @@
+How to Report a Potential Vulnerability?
+========================================
+
+If you would like to report a public issue (for example, one with a released
+CVE number), please report it via Github issues:
+
+  https://github.com/kraj/meta-clang/issues/new/choose
+
+If you are dealing with a not-yet released or urgent issue, please send a
+message to one of the maintainers listed in the README.  Include as many
+details as possible:
+  - the layer or software module affected
+  - the recipe and its version
+  - any example code, if available
+
+Branches maintained with security fixes
+---------------------------------------
+
+See https://wiki.yoctoproject.org/wiki/Releases for the list of current
+releases.  We only accept patches for the LTS releases and the master branch.