Cwikius-Spring/spring-data-elasticsearch
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-data-elasticsearch.git synced 2025-11-23 02:01:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update Update security documentation.

Browse Source 
See #3185
This commit is contained in:
Mark Paluch 2025-11-14 10:43:24 +01:00
parent f985e1efe5
commit 0b9cfca28f
No known key found for this signature in database
GPG Key ID: 55BC6374BAA9D973
1 changed files with 11 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
SECURITY.adoc
View File

@ -1,9 +1,15 @@
# Security Policy = Security Policy
## Supported Versions == Reporting a Vulnerability
Please see the https://spring.io/projects/spring-data-elasticsearch[Spring Data Elasticsearch] project page for supported versions. Please, https://github.com/spring-projects/security-advisories/security/advisories/new[open a draft security advisory] if you need to disclose and discuss a security issue in private with the Spring Data team.
Note that we only accept reports against https://spring.io/projects/spring-data#support[supported versions].
## Reporting a Vulnerability For more details, check out our https://spring.io/security-policy[security policy].
Please don't raise security vulnerabilities here. Head over to https://pivotal.io/security to learn how to disclose them responsibly. == JAR signing
Spring Data JARs released on Maven Central are signed.
You'll find more information about the key here: https://spring.io/GPG-KEY-spring.txt
Versions released prior to 2023 may be signed with a different key.