If you find a vulnerability or encounter a security incident involving this repository, please report it privately via GitHub's "Report a vulnerability" feature on the repository's Security tab.
Please kindly help provide as much vulnerability information as possible in the following format:
-
Issue title*:
-
Overview*:
-
Affected components and version number*:
-
CVE number (if any):
-
Vulnerability verification process*:
-
Contact information*:
The asterisk (*) indicates the required field.
We will confirm the vulnerabilities and contact you within a reasonable time after your submission.
We will publicly thank you after fixing the security vulnerability. To avoid negative impact, please keep the vulnerability confidential until we fix it. We would appreciate it if you could obey the following code of conduct:
The vulnerability will not be disclosed until a patch is released for it.
The details of the vulnerability, for example, exploits code, will not be disclosed.