Who to contact for security issues #180
Comments
|
use my username to G mail to send email regarding this repo |
|
@pentium10 - we can currently only give report access to @ptrofimov as it is a user-based repository, instead of an organization. Is @ptrofimov still actively contributing? For reference, the report can be found here: https://huntr.dev/bounties/9af1c35e-3f74-4c93-a241-e8be01335ec7/ |
|
He is not active at all. In the last 5 years I've committed all the updates, check out the recent commits. |
|
@pentium10 - you should have just received an e-mail from us, cheers! 🎉 |
|
received it |
Repository owner
deleted a comment from
JamieSlome
Feb 1, 2022
|
@pentium10 - great 👍 |
|
this has been addressed by #181 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hey there!
I belong to an open source security research community, and a member (@Nav-Prak) has found an issue, but doesn’t know the best way to disclose it.
If not a hassle, might you kindly add a
SECURITY.mdfile with an email, or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.Thank you for your consideration, and I look forward to hearing from you!
(cc @huntr-helper)
The text was updated successfully, but these errors were encountered: