Home Explore Help
Sign In
CityApper
/
django
mirror of https://github.com/django/django
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Added oss-security@lists.openwall.com to security release announcements.

Tim Graham 9 years ago
parent
0b0bb6100d
commit
46ce72e8d2
2 changed files with 6 additions and 5 deletions
Split View Show Diff Stats
  1. 4 3
      docs/internals/howto-release-django.txt
  2. 2 2
      docs/internals/security.txt

+ 4 - 3
docs/internals/howto-release-django.txt
View File 

@@ -341,9 +341,10 @@ Now you're ready to actually put the release out there. To do this:
 
    database (this will automatically flip it to ``False`` for all
 
    others); you can do this using the site's admin.
 
 
-#. Post the release announcement to the |django-announce|,
 
-   |django-developers|, and |django-users| mailing lists. This should
 
-   include links to the announcement blog post.
 
+#. Post the release announcement to the |django-announce|, |django-developers|,
 
+   and |django-users| mailing lists. This should include a link to the
 
+   announcement blog post. If this is a security release, also include
 
+   oss-security@lists.openwall.com.
 
 
 Post-release
 
 ============

+ 2 - 2
docs/internals/security.txt
View File 

@@ -112,8 +112,8 @@ On the day of disclosure, we will take the following steps:
 
    relevant patches and new releases, and crediting the reporter of
 
    the issue (if the reporter wishes to be publicly identified).
 
 
-4. Post a notice to the |django-announce| mailing list that links to the blog
 
-   post.
 
+4. Post a notice to the |django-announce| and oss-security@lists.openwall.com
 
+   mailing lists that links to the blog post.
 
 
 .. _the Python Package Index: https://pypi.python.org/pypi
 
 .. _the official Django development blog: https://www.djangoproject.com/weblog/