Trying to get in touch regarding a security issue

Question

Trying to get in touch regarding a security issue

JamieSlome opened this issue 4 years ago · 2 comments

Hi there,

I couldn't find a SECURITY.md in your repository and am not sure how to best contact you privately to disclose a security issue.

Can you add a SECURITY.md file with an e-mail to your repository, so that our system can send you the vulnerability details? GitHub suggests that a security policy is the best way to make sure security issues are responsibly disclosed.

Once you've done that, you should receive an e-mail within the next hour with more info.

Thanks! (cc @huntr-helper)

Answer 1 · 2021-07-16T11:02:32.000Z

Hi @JamieSlome,

We just added security contact, also please have a look at https://github.com/projectdiscovery/simplehttpserver/issues, few issues that we updated in the dev version that also includes few known security issues.

Answer 2 · 2021-07-28T15:51:26.000Z

Closing as this is resovled.