caddy

mirror of https://github.com/caddyserver/caddy.git synced 2026-02-24 04:00:01 -05:00

Author	SHA1	Message	Date
Matt Holt	96f142c2a6	Update SECURITY.md	2026-02-10 11:44:40 -07:00
Matt Holt	5ff50779cc	Update LLM disclosure requirements in SECURITY.md Clarified disclosure requirements for LLMs in security reports.	2026-02-09 14:40:41 -07:00
Matt Holt	40927d2f75	Require disclosure of LLM usage in security reports Some checks failed Tests / test (./cmd/caddy/caddy, ~1.25.0, ubuntu-latest, 0, 1.25, linux) (push) Failing after 16s Details Tests / test (s390x on IBM Z) (push) Has been skipped Details Tests / goreleaser-check (push) Has been skipped Details Cross-Build / build (~1.25.0, 1.25, aix) (push) Failing after 14s Details Cross-Build / build (~1.25.0, 1.25, darwin) (push) Failing after 13s Details Cross-Build / build (~1.25.0, 1.25, dragonfly) (push) Failing after 14s Details Cross-Build / build (~1.25.0, 1.25, freebsd) (push) Failing after 15s Details Cross-Build / build (~1.25.0, 1.25, illumos) (push) Failing after 15s Details Cross-Build / build (~1.25.0, 1.25, linux) (push) Failing after 14s Details Cross-Build / build (~1.25.0, 1.25, netbsd) (push) Failing after 14s Details Cross-Build / build (~1.25.0, 1.25, openbsd) (push) Failing after 14s Details Cross-Build / build (~1.25.0, 1.25, solaris) (push) Failing after 14s Details Cross-Build / build (~1.25.0, 1.25, windows) (push) Failing after 14s Details Lint / lint (ubuntu-latest, linux) (push) Failing after 14s Details Lint / govulncheck (push) Successful in 1m28s Details Lint / dependency-review (push) Failing after 14s Details OpenSSF Scorecard supply-chain security / Scorecard analysis (push) Failing after 14s Details Tests / test (./cmd/caddy/caddy, ~1.25.0, macos-14, 0, 1.25, mac) (push) Has been cancelled Details Tests / test (./cmd/caddy/caddy.exe, ~1.25.0, windows-latest, True, 1.25, windows) (push) Has been cancelled Details Lint / lint (macos-14, mac) (push) Has been cancelled Details Lint / lint (windows-latest, windows) (push) Has been cancelled Details Added requirement to disclose the use of LLMs in security reports.	2026-02-05 06:12:26 -07:00
Matt Holt	fe26751491	Update SECURITY.md Some checks failed Tests / test (./cmd/caddy/caddy, ~1.24.1, ubuntu-latest, 0, 1.24, linux) (push) Failing after 1m35s Details Tests / test (s390x on IBM Z) (push) Has been skipped Details Tests / goreleaser-check (push) Has been skipped Details Cross-Build / build (~1.24.1, 1.24, aix) (push) Successful in 1m39s Details Cross-Build / build (~1.24.1, 1.24, darwin) (push) Successful in 1m19s Details Cross-Build / build (~1.24.1, 1.24, dragonfly) (push) Successful in 1m16s Details Cross-Build / build (~1.24.1, 1.24, freebsd) (push) Successful in 1m16s Details Cross-Build / build (~1.24.1, 1.24, illumos) (push) Successful in 1m15s Details Cross-Build / build (~1.24.1, 1.24, linux) (push) Successful in 1m15s Details Cross-Build / build (~1.24.1, 1.24, netbsd) (push) Successful in 1m14s Details Cross-Build / build (~1.24.1, 1.24, openbsd) (push) Successful in 1m15s Details Cross-Build / build (~1.24.1, 1.24, solaris) (push) Successful in 1m14s Details Cross-Build / build (~1.24.1, 1.24, windows) (push) Successful in 1m13s Details Lint / lint (ubuntu-latest, linux) (push) Successful in 1m49s Details Lint / govulncheck (push) Successful in 1m16s Details Lint / lint (macos-14, mac) (push) Has been cancelled Details Lint / lint (windows-latest, windows) (push) Has been cancelled Details Tests / test (./cmd/caddy/caddy, ~1.24.1, macos-14, 0, 1.24, mac) (push) Has been cancelled Details Tests / test (./cmd/caddy/caddy.exe, ~1.24.1, windows-latest, True, 1.24, windows) (push) Has been cancelled Details	2025-06-12 09:38:48 -06:00
Matt Holt	47391e4ec7	Update SECURITY.md Some checks are pending Tests / test (./cmd/caddy/caddy, ~1.23.0, macos-14, 0, 1.23, mac) (push) Waiting to run Details Tests / test (./cmd/caddy/caddy, ~1.23.0, ubuntu-latest, 0, 1.23, linux) (push) Waiting to run Details Tests / test (./cmd/caddy/caddy.exe, ~1.22.3, windows-latest, True, 1.22, windows) (push) Waiting to run Details Tests / test (./cmd/caddy/caddy.exe, ~1.23.0, windows-latest, True, 1.23, windows) (push) Waiting to run Details Tests / test (s390x on IBM Z) (push) Waiting to run Details Tests / goreleaser-check (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, aix) (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, darwin) (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, dragonfly) (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, freebsd) (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, illumos) (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, linux) (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, netbsd) (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, openbsd) (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, solaris) (push) Waiting to run Details Cross-Build / build (~1.22.3, 1.22, windows) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, aix) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, darwin) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, dragonfly) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, freebsd) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, illumos) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, linux) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, netbsd) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, openbsd) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, solaris) (push) Waiting to run Details Cross-Build / build (~1.23.0, 1.23, windows) (push) Waiting to run Details Lint / lint (macos-14, mac) (push) Waiting to run Details Lint / lint (ubuntu-latest, linux) (push) Waiting to run Details Lint / lint (windows-latest, windows) (push) Waiting to run Details Lint / govulncheck (push) Waiting to run Details Clarify version support	2024-12-18 21:36:22 -07:00
Matt Holt	7ceef91295	Minor tweaks to security.md	2023-07-08 14:02:09 -06:00
Matthew Holt	2ebfda1ae9	Make copyright notice more consistent Some files had the old copyright or were missing the license comment entirely. Also change Light Code Labs to Dyanim in security contact and releases.	2021-09-16 12:50:32 -06:00
Matthew Holt	6d25261c22	Expand and clarify security policy While the Caddy project has had very few valid security bug reports over the years, we have a low signal-to-noise ratio with them (lots of invalid reports). Most are out of scope, and it can take too much valuable time for us to determine that. We would prefer researchers do this first. Hopefully these paragraphs spell out much more clearly what we do and don't accept.	2021-06-14 14:00:43 -06:00
Matthew Holt	3db60e6cba	Update contact info	2020-11-12 15:03:07 -07:00
Matt Holt	023d702f30	Update SECURITY.md	2020-10-01 17:11:10 -06:00
Matthew Holt	e385be9225	Update comment and Caddy 1 EOL	2020-08-11 11:26:19 -06:00
Matt Holt	452d4726f7	Update SECURITY.md	2020-05-20 14:24:47 -06:00
Matthew Holt	7c171542ed	Add security policy	2020-04-16 17:20:03 -06:00

13 Commits