Add SECURITY.md file

Question

Add SECURITY.md file

JamieSlome opened this issue 3 years ago · 3 comments

Hey there!

I belong to an open source security research community, and a member (@ning1022) has found an issue, but doesn’t know the best way to disclose it.

If not a hassle, might you kindly add a SECURITY.md file with an email, or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.

Thank you for your consideration, and I look forward to hearing from you!

(cc @huntr-helper)

Answer 1 · 2021-12-08T15:08:27.000Z

You can email me. Address is in my profile: https://github.com/adam-p

Answer 2 · 2021-12-09T09:42:15.000Z

@adam-p - you should have received an e-mail from us, but you can also view the reports here:

https://huntr.dev/bounties/14055db1-6ba6-4e8b-85e0-6cdf2f0b5c76/
https://huntr.dev/bounties/dee8d9e1-f95b-41cd-b8f4-27eac634f4d6/

Answer 3 · 2022-03-21T22:53:32.000Z

This extension is obsolete, and the maintainer has disappeared. Use the forked version instead.