Update LOCALIZING.md

Added a section on handling updates for translations.
Enable GitHub private security issue reporting and update policies (#653 )
2026-04-09 18:57:22 +02:00 · 2025-09-01 18:54:16 -07:00 · 2025-09-02 01:46:06 +00:00 · 2025-09-01 02:41:47 +00:00
4 changed files with 10 additions and 4 deletions
--- a/LOCALIZING.md
+++ b/LOCALIZING.md
@@ -18,7 +18,7 @@ Open [Sources/Secretive.xcodeproj](Sources/Secretive.xcodeproj) in Xcode.

 ### Translate

-Navigate to [Secretive/Localizable](Sources/Secretive/Localizable.xcstrings). 
+Navigate to [Sources/Packages/Localizable.xcstrings](Sources/Packages/Localizable.xcstrings). 

 <img src="/.github/readme/localize_sidebar.png" alt="Screenshot of Xcode navigating to the Localizable file" width="300">

@@ -32,6 +32,12 @@ Start translating! You'll see a list of english phrases, and a space to add a tr

 Push your changes and open a pull request. 

+### Handling Updates
+
+When your translation is merged, I'll invite you to the [secretive-localizers](https://github.com/secretive-localizers) group. I'll tag this group anytime there's a new set of strings, in the hopes that you'll update the translation. If you don't want to be notified, feel free to decline the invitation or leave the organization at any time.
+
 ### Questions

 Please open an issue if you have a question about translating the app. I'm more than happy to clarify any terms that are ambiguous or confusing. Thanks for contributing!
+
+
--- a/README.md
+++ b/README.md
@@ -61,4 +61,4 @@ Because secrets in the Secure Enclave are not exportable, they are not able to b

 ## Security

-If you discover any vulnerabilities in this project, please notify [max.goedjen@gmail.com](mailto:max.goedjen@gmail.com) with the subject containing "SECRETIVE SECURITY."
+Secretive's security policy is detailed in [SECURITY.md](SECURITY.md). To report security issues, please use [GitHub's private reporting feature.](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/privately-reporting-a-security-vulnerability#privately-reporting-a-security-vulnerability)
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -24,4 +24,4 @@ The latest version on the [Releases page](https://github.com/maxgoedjen/secretiv

 ## Reporting a Vulnerability

-If you discover any vulnerabilities in this project, please notify max.goedjen@gmail.com with the subject containing "SECRETIVE SECURITY."
+To report security issues, please use [GitHub's private reporting feature.](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/privately-reporting-a-security-vulnerability#privately-reporting-a-security-vulnerability)
--- a/Sources/Packages/Sources/SecureEnclaveSecretKit/SecureEnclaveStore.swift
+++ b/Sources/Packages/Sources/SecureEnclaveSecretKit/SecureEnclaveStore.swift
@@ -112,7 +112,7 @@ extension SecureEnclave {
            var accessError: SecurityError?
            let flags: SecAccessControlCreateFlags = switch attributes.authentication {
            case .notRequired:
-                []
+                [.privateKeyUsage]
            case .presenceRequired:
                [.userPresence, .privateKeyUsage]
            case .biometryCurrent:
Author	SHA1	Message	Date
Max Goedjen	abf5c26d58	Update LOCALIZING.md Added a section on handling updates for translations.	2025-09-01 18:54:16 -07:00
Max Goedjen	6dc93806a8	Enable GitHub private security issue reporting and update policies (#653 ) * Revise security vulnerability reporting process Updated security reporting instructions in README.md. * Change vulnerability reporting email to GitHub feature Updated the vulnerability reporting method to use GitHub's private reporting feature.	2025-09-02 01:46:06 +00:00
Max Goedjen	99a6d48e53	Specify private key usage explicitly (#652 )	2025-09-01 02:41:47 +00:00