-
Notifications
You must be signed in to change notification settings - Fork 7
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
#patch Adding Security and LICENSE.txt
- Loading branch information
1 parent
b408c0e
commit 381be0a
Showing
4 changed files
with
3,638 additions
and
3 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,34 @@ | ||
| Copyright (c) 2021, 2022 Oracle and/or its affiliates. | ||
| The Universal Permissive License (UPL), Version 1.0 | ||
|
|
||
| Subject to the condition set forth below, permission is hereby granted to any | ||
| person obtaining a copy of this software, associated documentation and/or data | ||
| (collectively the "Software"), free of charge and under any and all copyright | ||
| rights in the Software, and any and all patent rights owned or freely | ||
| licensable by each licensor hereunder covering either (i) the unmodified | ||
| Software as contributed to or provided by such licensor, or (ii) the Larger | ||
| Works (as defined below), to deal in both | ||
|
|
||
| (a) the Software, and | ||
| (b) any piece of software and/or hardware listed in the lrgrwrks.txt file if | ||
| one is included with the Software (each a "Larger Work" to which the Software | ||
| is contributed by such licensors), | ||
|
|
||
| without restriction, including without limitation the rights to copy, create | ||
| derivative works of, display, perform, and distribute the Software and make, | ||
| use, sell, offer for sale, import, export, have made, and have sold the | ||
| Software and the Larger Work(s), and to sublicense the foregoing rights on | ||
| either these or other terms. | ||
|
|
||
| This license is subject to the following condition: | ||
| The above copyright notice and either this complete permission notice or at | ||
| a minimum a reference to the UPL must be included in all copies or | ||
| substantial portions of the Software. | ||
|
|
||
| THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR | ||
| IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, | ||
| FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE | ||
| AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER | ||
| LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, | ||
| OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE | ||
| SOFTWARE. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,40 @@ | ||
| # Reporting security vulnerabilities | ||
|
|
||
| Oracle values the independent security research community and believes that | ||
| responsible disclosure of security vulnerabilities helps us ensure the security | ||
| and privacy of all our users. | ||
|
|
||
| Please do NOT raise a GitHub Issue to report a security vulnerability. If you | ||
| believe you have found a security vulnerability, please submit a report to | ||
| [[email protected]][1] preferably with a proof of concept. Please review | ||
| some additional information on [how to report security vulnerabilities to Oracle][2]. | ||
| We encourage people who contact Oracle Security to use email encryption using | ||
| [our encryption key][3]. | ||
|
|
||
| We ask that you do not use other channels or contact the project maintainers | ||
| directly. | ||
|
|
||
| Non-vulnerability related security issues including ideas for new or improved | ||
| security features are welcome on GitHub Issues. | ||
|
|
||
| ## Security updates, alerts and bulletins | ||
|
|
||
| Security updates will be released on a regular cadence. Many of our projects | ||
| will typically release security fixes in conjunction with the | ||
| [Oracle Critical Patch Update][3] program. Security updates are released on the | ||
| Tuesday closest to the 17th day of January, April, July and October. A pre-release | ||
| announcement will be published on the Thursday preceding each release. Additional | ||
| information, including past advisories, is available on our [security alerts][4] | ||
| page. | ||
|
|
||
| ## Security-related information | ||
|
|
||
| We will provide security related information such as a threat model, considerations | ||
| for secure use, or any known security issues in our documentation. Please note | ||
| that labs and sample code are intended to demonstrate a concept and may not be | ||
| sufficiently hardened for production use. | ||
|
|
||
| [1]: mailto:[email protected] | ||
| [2]: https://www.oracle.com/corporate/security-practices/assurance/vulnerability/reporting.html | ||
| [3]: https://www.oracle.com/security-alerts/encryptionkey.html | ||
| [4]: https://www.oracle.com/security-alerts/ |
Oops, something went wrong.