mirror of
https://github.com/openappsec/openappsec.git
synced 2025-06-28 16:41:02 +03:00
Create CONTRIBUTING.md
added contrib folder and file
This commit is contained in:
orianelou
GitHub
parent
99fb665493
commit
4440c8494b
53
contrib/CONTRIBUTING.md
Normal file
53
contrib/CONTRIBUTING.md
Normal file
@ -0,0 +1,53 @@
|
|||||||
|
# open-appsec Contributing Guide🌴
|
||||||
|
Thank you for your interest in open-appsec. We welcome contributions of all kinds, there is no need to do code to be helpful! All of the following tasks are noble and worthy contributions that you can make without coding:
|
||||||
|
|
||||||
|
- reporting a secuirty vulnerabilites
|
||||||
|
- Reporting a bug
|
||||||
|
- Helping a member of the comuinity
|
||||||
|
- Notes about our dokumentation
|
||||||
|
- Providnidng feedback and feature requests
|
||||||
|
|
||||||
|
Before making any kind of contribution make sur to read our [Code of Conduct](./CODE_OF_CONDUCT.md) to keep our community approachable and respectable.
|
||||||
|
|
||||||
|
This guide will provide an overview of the various contribution options' guidelines - from reporting or fixing a bug to suggesting an enhancement.
|
||||||
|
|
||||||
|
## Reporting security vulnerabilities
|
||||||
|
|
||||||
|
If you've found a vulnerability or a potential vulnerability in open-appsec please let us know at [security-alert@openappsec.io](mailto:security-alert@openappsec.io). We'll send a confirmation email to acknowledge your report within 24 hours and send an additional email when we've identified the issue positively or negatively.
|
||||||
|
|
||||||
|
An internal process will be activated upon determining the validity of a reported security vulnerability, which will end with releasing a fix and deciding on the applicable disclosure actions. The reporter of the issue will receive updates on this process' progress.
|
||||||
|
|
||||||
|
## Reporting a bug
|
||||||
|
|
||||||
|
**Important - If the bug you wish to report regards a suspicion of a security vulnerability, please refer to the [Reporting security vulnerability](#Reporting-security-vulnerabilities) section**
|
||||||
|
|
||||||
|
To report a bug, you can either open a new issue using a relevant [issue form](https://github.com/github/docs/issues/new/choose), or, [contact us via our open-appsec open source distribution list](mailto:opensource@openappsec.io).
|
||||||
|
|
||||||
|
Be sure to include a **title and clear description**, as much relevant information as possible, and a **code sample** or an **executable test case** demonstrating the expected behavior that is not occurring.
|
||||||
|
|
||||||
|
## Contributing a fix to a bug
|
||||||
|
|
||||||
|
Please [contact us via our open-appsec open source distribution list](mailto:opensource@openappsec.io) before writing your code. We will want to make sure we understand the boundaries of the proposed fix, that the relevant coding style is clear for the proposed fix's location in the code, and that the proposed contribution is relevant and eligible.
|
||||||
|
|
||||||
|
## Contributing code-independent enhancement
|
||||||
|
|
||||||
|
For any code-indpendent enhancements (such as docker compose files, or instruction on how to complie on diffrent OSs) please follow the next steps:
|
||||||
|
1. Contact us at info@openappsec.io to inform us about your possible contribution.
|
||||||
|
2. Fork the repository to your GitHub account.
|
||||||
|
3. Clone your forked repository to your local machine.
|
||||||
|
4. Add your contribitions to "Contrib" Folder in the local copy of the codebase.
|
||||||
|
5. Push your changes back to your forked repository.
|
||||||
|
6. Open a pull request (PR) against the main branch of the original repository.
|
||||||
|
|
||||||
|
## Proposing an enhancement
|
||||||
|
|
||||||
|
Please [suggest your change via our open-appsec open-source distribution list](mailto:opensource@openappsec.io) before writing your code. We will contact you to make sure we understand the boundaries of the proposed fix, that the relevant coding style is clear for the proposed fix's location in the code, and that the proposed contribution is relevant and eligible. There may be additional considerations that we would like to discuss with you before implementing the enhancement.
|
||||||
|
|
||||||
|
## Open Source documentation issues
|
||||||
|
|
||||||
|
to propuse changes to our [documentation](https://docs.openappsec.io/?utm_medium=web&utm_source=wix&utm_content=top_menu) you can either open a new issue using a relevant [issue form](https://github.com/github/docs/issues/new/choose), or, [contact us via our open-appsec open source distribution list](mailto:opensource@openappsec.io).
|
||||||
|
|
||||||
|
# Final Thanks
|
||||||
|
We value all efforts to read, suggest changes and/or contribute to our open source files. Thank you for your time and efforts.
|
||||||
|
|
||||||
|
The open-appsec Team
|
||||||
Loading…
x
Reference in New Issue
Block a user