Who to contact for security issues
Closed this issue ยท 2 comments
JamieSlome commented
Hello ๐
I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@arshadkazmi42) has found a potential issue, which I would be eager to share with you.
Could you add a SECURITY.md file with an e-mail address for me to send further details to? GitHub recommends a security policy to ensure issues are responsibly disclosed, and it would help direct researchers in the future.
Looking forward to hearing from you ๐
(cc @huntr-helper)
prashantkhoje commented
cc: @gerrith3
gerrith3 commented
Apologies that this got lost - the SECURITY.md file now exists with appropriate info.