monero-project/meta
monero-project/meta
1
0
Fork 0
mirror of https://github.com/monero-project/meta.git synced 2024-11-17 00:07:52 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

VRP: add new line for defining bug severity

Browse source
This commit is contained in:
anonimal 2017-11-30 00:05:08 +00:00
parent 4d7b2d8629
commit 93abfa7280
No known key found for this signature in database
GPG key ID: 66A76ECF914409F1
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
VULNERABILITY_RESPONSE_PROCESS.md
View file

@ -71,6 +71,7 @@ PGP key fingerprint = 1218 6272 CD48 E253 9E2D D29B 66A7 6ECF 9144 09F1
- a. HIGH: impacts network as a whole, has potential to break entire monero/kovri network, results in the loss of monero, or is on a scale of great catastrophe
- b. MEDIUM: impacts individual nodes, routers, wallets, or must be carefully exploited
- c. LOW: is not easily exploitable
- d. If there are any disputes regarding bug severity, the Monero Response team will ultimately define bug severity
7. Respond according to the severity of the vulnerability:
- a. HIGH severities must be notified on website and reddit /r/Monero (/r/Kovri for kovri) within 3 working days of classification