]> git.kaiwu.me - nginx.git/commitdiff
Updated security policy to clarify experimental features.
authorJordan Zebor <j.zebor@f5.com>
Mon, 23 Dec 2024 16:07:01 +0000 (08:07 -0800)
committerpluknet <pluknet@nginx.com>
Mon, 23 Dec 2024 16:36:15 +0000 (20:36 +0400)
The original security policy language did not capture the scope
as intended for experimental features and availability.

SECURITY.md

index f5cfcd7885f068bd663e45273df093a9bc033e3a..8e173ed165abfcfb7ad61afc8d00569cf35af7b3 100644 (file)
@@ -69,8 +69,7 @@ limiting, or buffer size configurations, or applying changes is impractical.
 Availability issues excluded from the security release process:
 - Local file content or upstream response content resulting only in worker
 process termination.
-- Issues with experimental features which result only in worker process
-termination.
+- Issues with experimental features which result only in availability impact.
 
 ## Trusted Configurations and Misconfigurations