Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
If you have discovered a security vulnerability in Buildbot, please be careful in how you disclose it, as the security of many significant projects depends on Buildbot.
Here is what we recommend:
- Email the maintainers (firstname.lastname@example.org) directly, explaining the vulnerability in detail and any recommended fixes. If you have a full-disclosure deadline, please state it clearly.
- Maintainers will reply as soon as possible to indicate that your email was received, and will correspond as the issue is fixed. He may copy other committers who can help solve the problem.
- Once a fix is ready, Maintainers or another committer will take care of making patch releases for affected versions, committing the fixes, and posting an announcement to the mailing list. Unless you ask to remain anonymous, you will be credited with discovery of the vulnerability.