Please send any vulnerability report to "ojmarcelino (at) tutanota (dot) com". To make sure that your report reaches us, please:
-
Include the repository name and the word “vulnerability” to the subject line as well as a short description of the vulnerability. For example:
Vulnerability in blocklists: possible DDoS attack
-
Make sure that message body contains a clear description.
If you have not received a reply to your email within 7 days, please make sure to follow up with us again at to "ojmarcelino (at) tutanota (dot) com". Once again, make sure that the word “vulnerability” is in the subject line.