Skip to content

Commit 152d4ba

Browse files
committed
Merge branch '5.4' into 6.0
* 5.4: Update link to HAL specification Add SensitiveParameter attribute in the security hardening list
2 parents cf13d16 + a7f36ae commit 152d4ba

File tree

2 files changed

+3
-3
lines changed

2 files changed

+3
-3
lines changed

contributing/code/security.rst

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -22,8 +22,8 @@ email for confirmation):
2222
is set to ``true`` or ``APP_ENV`` set to anything but ``prod``);
2323

2424
* Any fix that can be classified as **security hardening** like route
25-
enumeration, login throttling bypasses, denial of service attacks, or timing
26-
attacks.
25+
enumeration, login throttling bypasses, denial of service attacks, timing
26+
attacks, or lack of ``SensitiveParameter`` attributes.
2727

2828
In any case, the core team has the final decision on which issues are
2929
considered security vulnerabilities.

serializer.rst

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -399,4 +399,4 @@ take a look at how this bundle works.
399399
.. _`OpenAPI`: https://www.openapis.org
400400
.. _`GraphQL`: https://graphql.org
401401
.. _`JSON:API`: https://jsonapi.org
402-
.. _`HAL`: http://stateless.co/hal_specification.html
402+
.. _`HAL`: https://stateless.group/hal_specification.html

0 commit comments

Comments
 (0)