diff --git a/SECURITY.md b/SECURITY.md index 4ace3c77cb..374a27a743 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,5 +1,32 @@ # Security Policy +## Supported Versions + +The OWASP Nest project follows a rolling release model. +Only the latest version on the `main` branch is actively supported with security updates. + ## Reporting a Vulnerability +If you discover a security vulnerability in OWASP Nest, please report it responsibly. + +### How to Report + Please use this [form](https://github.com/OWASP/Nest/security/advisories/new) to report a security vulnerability. +Please **do not** create public GitHub issues for security-related reports. + +### What to Include + +When reporting a vulnerability, please include: + +- A clear description of the issue +- Steps to reproduce (if applicable) +- Potential impact +- Any relevant logs or screenshots + +## Response Timeline + +- Initial acknowledgment: **up to 7 days** +- Investigation and validation: **up to 14 days** depending on the issue severity +- Fix and coordinated disclosure thereafter + +Thank you for helping keep OWASP Nest and the community secure. diff --git a/frontend/jest.setup.ts b/frontend/jest.setup.ts index 16f12e964f..cd29a0b6fa 100644 --- a/frontend/jest.setup.ts +++ b/frontend/jest.setup.ts @@ -114,9 +114,9 @@ beforeAll(() => { } globalThis.ResizeObserver = class { - disconnect() {} // NOSONAR: empty mock implementation for test environment. - observe() {} // NOSONAR: empty mock implementation for test environment. - unobserve() {} // NOSONAR: empty mock implementation for test environment. + disconnect = jest.fn() + observe = jest.fn() + unobserve = jest.fn() } }) diff --git a/frontend/src/components/Footer.tsx b/frontend/src/components/Footer.tsx index e656122bbf..d19814317b 100644 --- a/frontend/src/components/Footer.tsx +++ b/frontend/src/components/Footer.tsx @@ -27,7 +27,8 @@ export default function Footer() {