fix: Incorrect command descriptions

docs: Tiny phrasing changes to the security policy
2025-09-10 14:32:50 +02:00 · 2025-06-14 16:51:24 +01:00 · 2025-06-14 16:34:58 +01:00
2 changed files with 5 additions and 5 deletions
--- a/SECURITY.md
+++ b/SECURITY.md
@ -20,10 +20,10 @@ We may backport fixes to the previous release at our discretion, but we don't gu

 We appreciate the efforts of security researchers and the community in identifying and reporting vulnerabilities. To ensure that potential vulnerabilities are addressed properly, please follow these guidelines:

-1. Contact members of the team over E2EE private message.
+1. **Contact members of the team directly** over E2EE private message.
   - [@jade:ellis.link](https://matrix.to/#/@jade:ellis.link)
   - [@nex:nexy7574.co.uk](https://matrix.to/#/@nex:nexy7574.co.uk) <!-- ? -->
-2. **Email the security team** directly at [security@continuwuity.org](mailto:security@continuwuity.org). This is not E2EE, so don't include sensitive details.
+2. **Email the security team** at [security@continuwuity.org](mailto:security@continuwuity.org). This is not E2EE, so don't include sensitive details.
 3. **Do not disclose the vulnerability publicly** until it has been addressed
 4. **Provide detailed information** about the vulnerability, including:
   - A clear description of the issue
@ -48,7 +48,7 @@ When you report a security vulnerability:

 When security vulnerabilities are identified:

-1. We will develop and test fixes in a private branch
+1. We will develop and test fixes in a private fork
 2. Security updates will be released as soon as possible
 3. Release notes will include information about the vulnerabilities, avoiding details that could facilitate exploitation where possible
 4. Critical security updates may be backported to the previous stable release
--- a/src/admin/debug/mod.rs
+++ b/src/admin/debug/mod.rs
@ -125,13 +125,13 @@ pub(super) enum DebugCommand {
 		reset: bool,
 	},

-	/// - Verify json signatures
+	/// - Sign JSON blob
 	///
 	/// This command needs a JSON blob provided in a Markdown code block below
 	/// the command.
 	SignJson,

-	/// - Verify json signatures
+	/// - Verify JSON signatures
 	///
 	/// This command needs a JSON blob provided in a Markdown code block below
 	/// the command.
Author	SHA1	Message	Date
Jade Ellis	5d44653e3a	fix: Incorrect command descriptions Some checks failed Documentation / Build and Deploy Documentation (push) Failing after 3s Details Release Docker Image / define-variables (push) Failing after 1s Details Release Docker Image / build-image (linux/amd64, linux-amd64) (push) Has been skipped Details Release Docker Image / build-image (linux/arm64, linux-arm64) (push) Has been skipped Details Release Docker Image / merge (push) Has been skipped Details Rust Checks / Format (push) Failing after 13s Details Rust Checks / Clippy (push) Failing after 26s Details Rust Checks / Cargo Test (push) Failing after 11s Details	2025-06-14 16:51:24 +01:00
Jade Ellis	44e60d0ea6	docs: Tiny phrasing changes to the security policy	2025-06-14 16:34:58 +01:00