Skip to content

Commit 3a1cac4

Browse files
committed
Merge branch '6.0' into 6.1
* 6.0: Update link to HAL specification Add SensitiveParameter attribute in the security hardening list
2 parents 22c51a0 + 152d4ba commit 3a1cac4

File tree

2 files changed

+3
-3
lines changed

2 files changed

+3
-3
lines changed

contributing/code/security.rst

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -22,8 +22,8 @@ email for confirmation):
2222
is set to ``true`` or ``APP_ENV`` set to anything but ``prod``);
2323

2424
* Any fix that can be classified as **security hardening** like route
25-
enumeration, login throttling bypasses, denial of service attacks, or timing
26-
attacks.
25+
enumeration, login throttling bypasses, denial of service attacks, timing
26+
attacks, or lack of ``SensitiveParameter`` attributes.
2727

2828
In any case, the core team has the final decision on which issues are
2929
considered security vulnerabilities.

serializer.rst

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -442,4 +442,4 @@ take a look at how this bundle works.
442442
.. _`OpenAPI`: https://www.openapis.org
443443
.. _`GraphQL`: https://graphql.org
444444
.. _`JSON:API`: https://jsonapi.org
445-
.. _`HAL`: http://stateless.co/hal_specification.html
445+
.. _`HAL`: https://stateless.group/hal_specification.html

0 commit comments

Comments
 (0)