aboutsummaryrefslogtreecommitdiffstats
path: root/vendor/league/html-to-markdown/.github
diff options
context:
space:
mode:
Diffstat (limited to 'vendor/league/html-to-markdown/.github')
-rw-r--r--vendor/league/html-to-markdown/.github/FUNDING.yml2
-rw-r--r--vendor/league/html-to-markdown/.github/SECURITY.md13
2 files changed, 14 insertions, 1 deletions
diff --git a/vendor/league/html-to-markdown/.github/FUNDING.yml b/vendor/league/html-to-markdown/.github/FUNDING.yml
index 11ea19c6c..5f2ca1499 100644
--- a/vendor/league/html-to-markdown/.github/FUNDING.yml
+++ b/vendor/league/html-to-markdown/.github/FUNDING.yml
@@ -1,3 +1,3 @@
github: colinodell
-patreon: colinodell
+tidelift: "packagist/league/html-to-markdown"
custom: ["https://www.colinodell.com/sponsor", "https://www.paypal.me/colinpodell/10.00"]
diff --git a/vendor/league/html-to-markdown/.github/SECURITY.md b/vendor/league/html-to-markdown/.github/SECURITY.md
new file mode 100644
index 000000000..5741abb4a
--- /dev/null
+++ b/vendor/league/html-to-markdown/.github/SECURITY.md
@@ -0,0 +1,13 @@
+# SECURITY POLICY
+
+## Supported Versions
+
+When a new **minor** version (`5.x`) is released, the previous one will continue to receive security and bug fixes for *at least* 3 months.
+
+When a new **major** version is released (`4.0`, `5.0`, etc), the previous one will receive bug fixes for *at least* 3 months and security updates for 6 months after that new release comes out.
+
+(This policy may change in the future and exceptions may be made on a case-by-case basis.)
+
+## Reporting a Vulnerability
+
+If you discover a security vulnerability within this package, please use the [Tidelift security contact form](https://tidelift.com/security) or email Colin O'Dell at <colinodell@gmail.com>. All security vulnerabilities will be promptly addressed. Please do not disclose security-related issues publicly until a fix has been announced.