Skip to content

Security: janbrasna/httpie

Security

SECURITY.md

Security policy

Reporting a vulnerability

When you identify a vulnerability in HTTPie, please report it privately using one of the following channels:

In addition to the description of the vulnerability, include the following information:

  • A short reproducer to verify it (it can be a small HTTP server, shell script, docker image, etc.)
  • Your deemed severity level of the vulnerability (LOW/MEDIUM/HIGH/CRITICAL)
  • CWE ID, if available.

There aren’t any published security advisories