On Tue, Jul 20, 2021 at 9:49 AM Lukas Tribus <[email protected]> wrote: > It's [email protected], it's somehow well hidden in doc/intro.txt > (that is the *starter* guide). > > I would definitely suggest putting it on the website haproxy.org, and > in the repository move it to a different file, like MAINTAINERS.
There is a securitytxt RFC draft. I have seen some projects adapt it just using /security.txt in the repository root, instead of the /.well-known/. Anyone browsing the project should notice the file there when looking for anything security related. Fancy website: https://securitytxt.org/ Direct link to draft: https://tools.ietf.org/html/draft-foudil-securitytxt-12 --Valters
