Add extra way to report security vulnerability
Review Request #806 — Created July 13, 2021 and submitted
- Add an extra way of reporting a security vulnerability in the project. This is done by creating a new issue in our issue tracker and ensuring that the visibility of it is set so that only Pidgin Developers can view it. - Fix a simple mistake in markdown link syntax in the contributing page which links back to the Security page. - Change hardcoded link to list of advisories to a Hugo ref link (if we ever change the location of the advisories page this will make Hugo throw an error since it won't be able to find the page, otherwise the link would just end up being broken without us necessarily knowing about it.
dev-server.shand verified content looks as intended.
So I just tried this with my non admin account and you can only see the groups that you are a part of. Since it's not a pidgin developer, it doesn't see it.
However, we can use an issue template url like
https://issues.imfreedom.org/newIssue?project=PIDGIN&c=visible%20to%20Pidgin%20Developerswhere the issue will automatically be set correctly. See https://issues.imfreedom.org/issue/PIDGIN-17545 for an example that was created with that link.