File tree Expand file tree Collapse file tree 1 file changed +23
-0
lines changed Expand file tree Collapse file tree 1 file changed +23
-0
lines changed Original file line number Diff line number Diff line change 1+ # Reporting Vulnerabilities
2+
3+ ** ⚠️ Please do not file public GitHub issues for security vulnerabilities as they are open for everyone to see! ⚠️**
4+
5+ We encourage responsible disclosure practices for security vulnerabilities.
6+
7+ ## Reporting a Vulnerability
8+
9+ If you believe you've found a security-related bug, fill out a new
10+ vulnerability report via GitHub directly. To do so, follow these instructions:
11+
12+ 1 . Click on the ` Security ` tab in the project repository.
13+ 2 . Click the green ` Report a vulnerability ` button at the top right corner.
14+ 3 . Fill in the form as accurately as you can, including as many details as possible.
15+ 4 . Click the green ` Submit report ` button at the bottom.
16+
17+ ## Don't have a GitHub account?
18+
19+ Alternatively, to report a security vulnerability, please use the
20+ [ Tidelift security contact] ( https://tidelift.com/security ) . Tidelift will coordinate the fix and disclosure.
21+
22+ It is currently set up to forward every incoming report to Bernát Gábor. We will try to assess the problem in timely
23+ manner and disclose it in a responsible way.
You can’t perform that action at this time.
0 commit comments