Please report (suspected) security vulnerabilities to security@iohk.io. You will receive a response from us within 48 hours. If the issue is confirmed, we will release a patch as soon as possible.
Please provide a clear and concise description of the vulnerability, including:
- the affected version(s) of cardano-node,
- steps that can be followed to excercise the vulnerability,
- any workarounds or mitigatations
If you have developed any code or utilities that can help demonstrate the suspected vulberability, please mention them in your email but DO NOT attempt to include them as attachments as this may cause your Email to be blocked by spam filters.