mirror of
https://github.com/monero-project/meta.git
synced 2024-12-22 19:49:23 +00:00
VRP: clarify PoC submission requirement
This commit is contained in:
parent
93abfa7280
commit
611f2461a6
1 changed files with 1 additions and 1 deletions
|
@ -60,7 +60,7 @@ PGP key fingerprint = 1218 6272 CD48 E253 9E2D D29B 66A7 6ECF 9144 09F1
|
||||||
3. In no more than 3 working days, Response Team should gratefully respond to researcher using only encrypted, secure channels
|
3. In no more than 3 working days, Response Team should gratefully respond to researcher using only encrypted, secure channels
|
||||||
|
|
||||||
4. Response Manager makes inquiries to satisfy any needed information to confirm if submission is indeed a vulnerability
|
4. Response Manager makes inquiries to satisfy any needed information to confirm if submission is indeed a vulnerability
|
||||||
- a. If submission proves to be vulnerable, proceed to next step
|
- a. If submission proves to be vulnerable with PoC code / exploit, proceed to next step
|
||||||
- b. If not vulnerable:
|
- b. If not vulnerable:
|
||||||
- i. Response Manager responds with reasons why submission is not a vulnerability
|
- i. Response Manager responds with reasons why submission is not a vulnerability
|
||||||
- ii. Response Manager moves discussion to a new or existing ticket on GitHub if necessary
|
- ii. Response Manager moves discussion to a new or existing ticket on GitHub if necessary
|
||||||
|
|
Loading…
Reference in a new issue