path: root/doc/security.rdoc
diff options
authorzzak <zzak@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>2013-05-03 22:21:34 +0000
committerzzak <zzak@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>2013-05-03 22:21:34 +0000
commit5835461b16376e2e26b0c35201fbd54dbe8c36b6 (patch)
treead7d089e9e05621c4c098c9fc1b8aa0fed9d233d /doc/security.rdoc
parentb2580fb21d0bd7472e248dce0cdd236ccbed6bc3 (diff)
* doc/security.rdoc: Add note about reporting security vulns
git-svn-id: svn+ssh:// b2dd03c8-39d4-4d8f-98ff-823fe69b080e
Diffstat (limited to 'doc/security.rdoc')
1 files changed, 5 insertions, 0 deletions
diff --git a/doc/security.rdoc b/doc/security.rdoc
index 9f4bca6..2cf6531 100644
--- a/doc/security.rdoc
+++ b/doc/security.rdoc
@@ -10,6 +10,11 @@ Please check the full list of publicly known CVEs and how to correctly report a
security vulnerability, at:
Japanese version is here:
+Security vulnerabilities should be reported via an email to ({the PGP public
+key}[]), which is a private mailing list.
+Reported problems will be published after fixes.
== <code>$SAFE</code>
Ruby provides a mechanism to restrict what operations can be performed by Ruby