mirror of
https://github.com/ceph/ceph-csi.git
synced 2025-03-09 00:49:30 +00:00
f87d06ed85
Several packages are only used while running the e2e suite. These packages are less important to update, as the they can not influence the final executable that is part of the Ceph-CSI container-image. By moving these dependencies out of the main Ceph-CSI go.mod, it is easier to identify if a reported CVE affects Ceph-CSI, or only the testing (like most of the Kubernetes CVEs). Signed-off-by: Niels de Vos <ndevos@ibm.com>
21 lines
585 B
Plaintext
21 lines
585 B
Plaintext
# Defined below are the security contacts for this repo.
|
|
#
|
|
# They are the contact point for the Product Security Committee to reach out
|
|
# to for triaging and handling of incoming issues.
|
|
#
|
|
# The below names agree to abide by the
|
|
# [Embargo Policy](https://git.k8s.io/security/private-distributors-list.md#embargo-policy)
|
|
# and will be removed and replaced if they violate that agreement.
|
|
#
|
|
# DO NOT REPORT SECURITY VULNERABILITIES DIRECTLY TO THESE NAMES, FOLLOW THE
|
|
# INSTRUCTIONS AT https://kubernetes.io/security/
|
|
|
|
dims
|
|
thockin
|
|
justinsb
|
|
tallclair
|
|
piosz
|
|
brancz
|
|
DirectXMan12
|
|
lavalamp
|