Security

Report a vulnerability

SECURITY.md

Security Policy

Supported Versions

All cogs on the master branch will be kept up to date with security patches.

Reporting a Vulnerability

To report a vulnerability you discovered message me on discord Dav#6998 or send me an E-Mail to dav@mail.stopdavabuse.de.

I will reply to you as soon as possible but definitely within 7 days.

Do NOT publically disclose a vulnerability or open a fix PR without talking to me first.

Unwanted escalation of permissions in roomer
GHSA-3f73-8j6q-28v8 published May 27, 2021 by Dav-Git

Low
Remote code execution in ticketer
GHSA-r2cf-49r7-pfj7 published May 9, 2021 by Dav-Git

Critical

Learn more about advisories related to Dav-Git/Dav-Cogs in the GitHub Advisory Database