Sync with WeblateOrg/meta

.github/labels.yml

@@ -32,7 +32,7 @@
 # Automated dependency updates
 - color: e3f49c
   name: dependencies
-  description: Pull requests that update a dependency file.
+  description: Third-party library dependencies.
 # Hacktoberfest
 - color: 7057ff
   name: hacktoberfest

.github/workflows/label-sync.yml

@@ -14,17 +14,14 @@ on:
     - .github/workflows/label-sync.yml
 
 permissions:
-  contents: read
+  issues: write
 
 jobs:
   build:
     name: Sync labels
     runs-on: ubuntu-22.04
     steps:
     - uses: actions/checkout@v3
-    - uses: micnncim/[email protected]
-      env:
-        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        GITHUB_REPOSITORY: ${{ github.repository }}
+    - uses: srealmoreno/label-sync-action@v1
       with:
-        manifest: .github/labels.yml
+        clean-labels: true

SECURITY.md

@@ -6,13 +6,15 @@ SPDX-License-Identifier: CC0-1.0
 This file is maintained in https://github.com/WeblateOrg/meta/
 -->
 
-# Weblate Security
+# Weblate security
 
-We take security very seriously at Weblate. We welcome any peer review of our
-100% open source code to ensure nobody's Weblate is ever compromised or hacked.
+The Weblate team takes security and related transparency very seriously.
+We welcome any peer review of our 100% open-source code to ensure nobody's Weblate
+is ever compromised or hacked.
 
-You can find more information on reporting security issues in
-[our documentation][1] and on [our page at HackerOne][2].
+Information about practices for reporting and fixing security issues is described
+in [our documentation][1] and on [our page at HackerOne][2]. This ensures all
+vulnerabilities are solved securely, quickly, and transparently.
 
 [1]: https://docs.weblate.org/en/latest/contributing/issues.html#security
 [2]: https://hackerone.com/weblate