Two best options for applying a security patch directly?
Potential work flow
- Get a private fork on github ($$) where the security group could have all pull-requests that can not be seen from the outside and frequently get synched to the main repo.
- When applying the patch, apply directly into origin to avoid a pull request. One can do this using the following: