diff --git a/.github/workflows/promote.yaml b/.github/workflows/promote.yaml index b4c1304..b64f8ca 100644 --- a/.github/workflows/promote.yaml +++ b/.github/workflows/promote.yaml @@ -12,9 +12,7 @@ on: description: 'Channel Promotion, e.g. latest/edge -> latest/candidate' required: true type: choice - options: - - 'latest/edge -> latest/candidate' - - 'latest/candidate -> latest/stable' + options: ['latest/edge -> latest/candidate', 'latest/candidate -> latest/stable'] jobs: promote-snap: diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index dff8e42..409ab6f 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -44,4 +44,5 @@ jobs: SNAPCRAFT_STORE_CREDENTIALS: ${{ secrets.STORE_LOGIN }} with: snap: ${{ env.SNAP_FILE }} + # Comma-separated list of channels to release the snap to. release: latest/edge,3/edge diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000..8490349 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,16 @@ + + + + + + +# Security policy + + +## Reporting a vulnerability +To report a security issue, file a [Private Security Report](https://github.com/canonical/prometheus-juju-exporter/security/advisories/new) +with a description of the issue, the steps you took to create the issue, affected versions, and, +if known, mitigations for the issue. + +The [Ubuntu Security disclosure and embargo policy](https://ubuntu.com/security/disclosure-policy) +contains more information about what you can expect when you contact us and what we expect from you.