Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
On the project pages there is some text "Report security issue."
That link is inviting to people who want to "Report an issue" who then end up at a dead-end for getting help. We should make it more obvious what that link is for by changing it to "Report security vulnerability."
Comment | File | Size | Author |
---|---|---|---|
#3 | 2281413_vulnerability_more_specific_than_issue.patch | 593 bytes | greggles |
Comments
Comment #1
Bojhan CreditAttribution: Bojhan commentedI will put this up for a topic in the DSWG Dev tools meeting, I think that we should be able to do this pretty quickly.
Comment #2
coltraneProposal is semantic and more specific, so I'm in favor of it.
Comment #3
gregglesPatch here.
I asked for feedback in #drupal-security on irc. It seems like there is rough consensus on the idea (mlhess and drumm also like it)
Comment #4
Bojhan CreditAttribution: Bojhan commentedComment #5
dwwWFM. Committed and pushed to 7.x-3.x. Just needs deployment.
Thanks folks!
-Derek
p.s. Confused why, if https://drupal.org/commitlog/commit/4364/5682e6d5e7fb235ff6dd7cc22895e66... is in the DB and #493074: Back-link to the commit as a comment on the related issue. has been deployed, we didn't see a comment here about the commit...
Comment #7
tvn CreditAttribution: tvn commentedComment #8
drummDeployed. Blocks are cached, so the change will appear gradually throughout the site.