Trying to get in touch regarding a security issue

Question

Trying to get in touch regarding a security issue

Opened this issue 4 years ago · 2 comments

Hi there,

I couldn't find a SECURITY.md in your repository and am not sure how to best contact you privately to disclose a security issue.

Can you add a SECURITY.md file with an e-mail to your repository, so that our system can send you the vulnerability details? GitHub suggests that a security policy is the best way to make sure security issues are responsibly disclosed.

Once you've done that, you should receive an e-mail within the next hour with more info.

Thanks! (cc @huntr-helper)

Answer 1 · 2021-12-28T00:41:56.000Z

Big red flag here. Thanks for posting, using something else.

Answer 2 · 2021-12-28T01:03:32.000Z

Yeah this is unmaintained at this point. I should mark this as archived and deprecated on npm. Thanks for the reminder.