You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: CONTRIBUTING.md
+2-2
Original file line number
Diff line number
Diff line change
@@ -207,11 +207,11 @@ Adding a new security check for your feature is easy and fast:
207
207
#### Wording Guideline
208
208
Consider the following when adding a newsecurity check:
209
209
-*Group.name*: The category name; ends without period as this is a headline.
210
-
-*Check.title*: Is the positive hypothesis that should be checked; ends without period as this is a title.
210
+
-*Check.title*: Is the positive hypothesis that should be checked (for example "Door locked" instead of"Door unlocked"); ends without period as this is a title.
211
211
-*Check.warning*: The warning if the test fails; ends with period as this is a description.
212
212
-*Check.solution*: The recommended solution if the test fails; ends with period as this is an instruction.
213
213
- The wordings must not contain any sensitive information such as keys, as the security report may be exposed in logs.
214
-
- The wordings should be concise and not contain verbose explanations.Remember that these phrases contribute to data traffic and are therefore a cost factor that can become significant when scaling up.
214
+
- The wordings should be concise and not contain verbose explanations.
215
215
- Do not use pronouns such as "you" or "your" because log files can have various readers with different roles. Do not use pronouns such as "I" or "me" because although we love it dearly, Parse Server is not a human.
0 commit comments