From 6659656939946d0507af30d621c627cff82f7450 Mon Sep 17 00:00:00 2001 From: Bruno Alla Date: Thu, 2 Jul 2026 19:50:13 +0100 Subject: [PATCH 1/2] Update security contact email address --- SECURITY.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/SECURITY.md b/SECURITY.md index 88ff092a26..f33302969b 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -2,6 +2,6 @@ ## Reporting a Vulnerability -**Please report security issues by emailing security@encode.io**. +**Please report security issues by emailing security@browniebroke.com**. The project maintainers will then work with you to resolve any issues where required, prior to any public disclosure. From 77b425b8e5a6f82a4ebfceae642b655ab841f406 Mon Sep 17 00:00:00 2001 From: Bruno Alla Date: Wed, 8 Jul 2026 21:30:19 +0100 Subject: [PATCH 2/2] Update security policy to replace email by GitHub security advisory Based django-debug-toolbar: https://github.com/django-commons/django-debug-toolbar/blob/main/SECURITY.md --- SECURITY.md | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index f33302969b..ebbf58960b 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,7 +1,11 @@ # Security Policy -## Reporting a Vulnerability +## Supported Versions + +Only the latest version of django-rest-framework is supported: -**Please report security issues by emailing security@browniebroke.com**. +[![PyPI version](https://badge.fury.io/py/djangorestframework.svg)](https://pypi.python.org/pypi/djangorestframework) + +## Reporting a Vulnerability -The project maintainers will then work with you to resolve any issues where required, prior to any public disclosure. +If you think you have found a vulnerability, and even if you are not sure, please [report it to us in private](https://github.com/encode/django-rest-framework/security/advisories/new). We will review it and get back to you. Please refrain from public discussions of the issue. \ No newline at end of file