Re: [PATCH 1/2] Documentation: clarify the expected collaboration with security bugs reporters

From: Kees Cook
Date: Thu Aug 14 2025 - 17:24:21 EST

Next message: Rob Herring: "Re: [PATCH 2/8] mfd: dt-bindings: ti,twl6040: convert to DT schema"
Previous message: Kees Cook: "Re: [PATCH 2/2] Documentation: smooth the text flow in the security bug reporting process"
In reply to: Kees Cook: "Re: [PATCH 2/2] Documentation: smooth the text flow in the security bug reporting process"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Aug 14, 2025 at 09:27:29PM +0200, Willy Tarreau wrote:
> Some bug reports sent to the security team sometimes lack any explanation,
> are only AI-generated without verification, or sometimes it can simply be
> difficult to have a conversation with an invisible reporter belonging to
> an opaque team. This fortunately remains rare but the trend has been
> steadily increasing over the last years and it seems important to clarify
> what developers expect from reporters to avoid frustration on any side and
> keep the process efficient.
>
> Cc: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
> Signed-off-by: Willy Tarreau <w@xxxxxx>

Reviewed-by: Kees Cook <kees@xxxxxxxxxx>

--
Kees Cook

Next message: Rob Herring: "Re: [PATCH 2/8] mfd: dt-bindings: ti,twl6040: convert to DT schema"
Previous message: Kees Cook: "Re: [PATCH 2/2] Documentation: smooth the text flow in the security bug reporting process"
In reply to: Kees Cook: "Re: [PATCH 2/2] Documentation: smooth the text flow in the security bug reporting process"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]