Document that we care about our infrastructure's security as well (#3874)

author: Alex Gaynor <alex.gaynor@gmail.com> 2017-08-23 16:46:55 -0400
committer: Paul Kehrer <paul.l.kehrer@gmail.com> 2017-08-24 04:46:55 +0800
commit: 13e9a6f9e98635d694310e87af7b82d180e486e7 (patch)
tree: 9796bcb660e590b1acad93ba46074d811a160959 /docs/security.rst
parent: e2c1c0fb8cb91b18597496b00df6a23b77f4affa (diff)
download: cryptography-13e9a6f9e98635d694310e87af7b82d180e486e7.tar.gz
cryptography-13e9a6f9e98635d694310e87af7b82d180e486e7.tar.bz2
cryptography-13e9a6f9e98635d694310e87af7b82d180e486e7.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/docs/security.rst b/docs/security.rst
index 1673b02c..646b3e22 100644
--- a/docs/security.rst
+++ b/docs/security.rst
@@ -5,6 +5,14 @@ We take the security of ``cryptography`` seriously. The following are a set of
 policies we have adopted to ensure that security issues are addressed in a
 timely fashion.
 
+Infrastructure
+--------------
+
+In addition to ``cryptography``'s code, we're also concerned with the security
+of the infrastructure we run (primarily ``cryptography.io`` and
+``ci.cryptography.io``). If you discover a security vulnerability in our
+infrastructure, we ask you to report it using the same procedure.
+
 What is a security issue?
 -------------------------
author	Alex Gaynor <alex.gaynor@gmail.com>	2017-08-23 16:46:55 -0400
committer	Paul Kehrer <paul.l.kehrer@gmail.com>	2017-08-24 04:46:55 +0800
commit	13e9a6f9e98635d694310e87af7b82d180e486e7 (patch)
tree	9796bcb660e590b1acad93ba46074d811a160959 /docs/security.rst
parent	e2c1c0fb8cb91b18597496b00df6a23b77f4affa (diff)
download	cryptography-13e9a6f9e98635d694310e87af7b82d180e486e7.tar.gz cryptography-13e9a6f9e98635d694310e87af7b82d180e486e7.tar.bz2 cryptography-13e9a6f9e98635d694310e87af7b82d180e486e7.zip