Add security page (#2447)

2016-10-29 15:44:20 -04:00 · 2016-10-29 15:44:20 -04:00 · bfa0c3bc4c
parent daacc4be8b
commit bfa0c3bc4c
2 changed files with 38 additions and 0 deletions
--- a/website/source/layouts/_footer.erb
+++ b/website/source/layouts/_footer.erb
@ -10,6 +10,7 @@
            <li><a href="/intro/index.html">Intro</a></li>
            <li><a href="/docs/index.html">Docs</a></li>
            <li><a href="/community.html">Community</a></li>
+            <li><a href="/security.html">Security</a></li>
    				<li><a href="http://demo.consul.io/">Demo</a></li>
          </ul>
          <ul class="external-links white nav navbar-nav">
--- a/website/source/security.html.erb
+++ b/website/source/security.html.erb
@ -0,0 +1,37 @@
+---
+page_title: "Security"
+description: |-
+  Consul takes security very seriously. Please responsibly disclose any security vulnerabilities found and we'll handle it quickly.
+---
+
+<div class="container">
+	<div class="col-md-8 col-md-offset-2">
+		<div class="bs-docs-section">
+      <h1>Consul Security</h1>
+
+      <p>
+        We understand that many users place a high level of trust in HashiCorp
+        and the tools we build. We apply best practices and focus on security to
+        make sure we can maintain the trust of the community.
+      </p>
+
+      <p>
+        We deeply appreciate any effort to disclose vulnerabilities responsibly
+      </p>.
+
+      <p>
+        If you would like to report a vulnerability, please see the <a
+        href="https://www.hashicorp.com/security.html">HashiCorp security
+        page</a>, which has the proper email to communicate with as well as our
+        PGP key. Please <strong>do not create an GitHub issue for security
+        concerns</strong>.
+      </p>
+
+      <p>
+        If you are not reporting a security sensitive vulnerability, please open
+        an issue on the <a href="https://github.com/hashicorp/consul">Consul
+        GitHub repository</a>.
+      </p>
+    </div>
+  </div>
+</div>