Skip to content

Security: web-infra-dev/rspack

SECURITY.md

Security

Reporting a vulnerability in Rspack

Report a security vulnerability in Rspack via web-infra-security@bytedance.com.

Normally, your report will be acknowledged within 24 hours, and you'll receive a more detailed response to your report within 5 days indicating the next steps in handling your submission.

After the initial reply to your report, the security team will endeavor to keep you informed of the progress being made towards a fix and full announcement, and may ask for additional information or guidance surrounding the reported issue.

Learn more about advisories related to web-infra-dev/rspack in the GitHub Advisory Database