Skip to content

docs: add community-health files (SECURITY, CODE_OF_CONDUCT, CONTRIBUTING)#29

Open
jhamon wants to merge 1 commit into
mainfrom
docs/community-health-files
Open

docs: add community-health files (SECURITY, CODE_OF_CONDUCT, CONTRIBUTING)#29
jhamon wants to merge 1 commit into
mainfrom
docs/community-health-files

Conversation

@jhamon

@jhamon jhamon commented Jul 10, 2026

Copy link
Copy Markdown
Contributor

Problem

This public repo had no SECURITY.md, CODE_OF_CONDUCT.md, or CONTRIBUTING.md. The org pinecone-io/.github repo does not supply them as defaults — it provides only ISSUE_TEMPLATE/ and pull_request_template.md — so GitHub showed no security policy, code of conduct, or contributing guide for the repo.

Solution

Add all three files at the repo root (where LICENSE and README already live; .github/ here holds only workflows), so GitHub auto-detects and renders them in the Community/Insights tab.

  • SECURITY.md — scopes the repo as an example, and routes private disclosure two ways: GitHub's Report a vulnerability form for issues in this sample code, and security@pinecone.io for platform/SDK vulnerabilities. No public issues for security problems.
  • CODE_OF_CONDUCT.md — standard Contributor Covenant v2.1, verbatim except the enforcement contact, which points to the real, routable support@pinecone.io rather than a fabricated conduct-specific inbox.
  • CONTRIBUTING.md — repo-accurate onboarding: Node 20+ (matching the CI matrix), npm install, cp .env.example .env, and the exact scripts CI runs (lint, format:check, typecheck, test) plus how to run the demo (npm run index / npm run recommend). Every referenced script was verified to exist in package.json.

Docs-only change with no runtime surface. Local checks pass (lint, format:check, typecheck, and 23/23 tests); the new Markdown files fall outside the lint (src) and format (**/*.ts) globs, so CI is unaffected.

Closes #26
Refs #27

🤖 Generated with Claude Code

…TING)

The org `pinecone-io/.github` repo supplies only ISSUE_TEMPLATE and a PR
template, so this repo had no security policy, code of conduct, or
contributing guide. Add all three at the repo root so GitHub renders them
in the Community/Insights tab.

Closes #26

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
@jhamon jhamon added the maintenance Repo maintenance sweep label Jul 10, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

maintenance Repo maintenance sweep

Projects

None yet

Development

Successfully merging this pull request may close these issues.

docs: add community-health files (SECURITY, CODE_OF_CONDUCT, CONTRIBUTING)

1 participant