Skip to content

Security: shyoon-devops/hera

Security

SECURITY.md

Security

Reporting a Vulnerability

If you find a security related bug in Hera, we kindly ask you for responsible disclosure and for giving us appropriate time to react, analyze and develop a fix to mitigate the found security vulnerability.

Please report vulnerabilities by e-mail to the following address:

All vulnerabilities and associated information will be treated with full confidentiality.

Public Disclosure

Security vulnerabilities will be disclosed via change logs and using the GitHub Security Advisories feature to keep our community well informed, and will credit you for your findings (unless you prefer to stay anonymous, of course).

Securing Argo Workflows

Since Hera Workflows is built for Argo Workflows, this section offers the Argo Workflows security docs:

  • see docs/security.md for information about securing your Argo Workflows instance

There aren’t any published security advisories