external-secrets/SECURITY.md

# Security Policy

- [Security Policy](#security-policy)
  - [Reporting security problems](#reporting-security-problems)
  - [Vulnerability Management Plans](#vulnerability-management-plans)
    - [Critical Updates And Security Notices](#critical-updates-and-security-notices)

<a name="reporting"></a>
## Reporting security problems

**DO NOT CREATE AN ISSUE** to report a security problem. Instead, please
send an email to cncf-ExternalSecretsOp-maintainers@lists.cncf.io

<a name="vulnerability-management"></a>
## Vulnerability Management Plans

### Critical Updates And Security Notices

We learn about critical software updates and security threats from these sources

1. GitHub Security Alerts
2. [Dependabot](https://dependabot.com/) Dependency Updates
feat: security policy & dependabot (#60) * feat: add dependabot yml and security policy 2021-03-17 07:32:32 +00:00			`# Security Policy`

			`- [Security Policy](#security-policy)`
			`- [Reporting security problems](#reporting-security-problems)`
			`- [Vulnerability Management Plans](#vulnerability-management-plans)`
			`- [Critical Updates And Security Notices](#critical-updates-and-security-notices)`

			`<a name="reporting"></a>`
			`## Reporting security problems`

			`DO NOT CREATE AN ISSUE to report a security problem. Instead, please`
docs: Update contact email (#2948) (#2949) 2023-12-14 12:35:39 +00:00			`send an email to cncf-ExternalSecretsOp-maintainers@lists.cncf.io`
feat: security policy & dependabot (#60) * feat: add dependabot yml and security policy 2021-03-17 07:32:32 +00:00
			`<a name="vulnerability-management"></a>`
			`## Vulnerability Management Plans`

			`### Critical Updates And Security Notices`

			`We learn about critical software updates and security threats from these sources`

			`1. GitHub Security Alerts`
			`2. [Dependabot](https://dependabot.com/) Dependency Updates`