Document how to report a security vulnerability #4599
Labels
Comments
|
You can send me a mail. |
|
This issue had no activity for at least half a year. It's subject to automatic issue closing if there is no activity in the next 15 days. |
|
. |
|
This issue had no activity for at least half a year. It's subject to automatic issue closing if there is no activity in the next 15 days. |
|
. |
|
/cc @sokra can we integrate # Reporting Security Issues
If you discover a security issue in webpack, please report it by sending an
email to [security@webpack.js.org](security@webpack.js.org).
This will allow us to assess the risk, and make a fix available before we add a
bug report to the GitHub repository.
Thanks for helping make webpack safe for everyone. |
|
BTW we can add this file right now with you public email |
|
Also you can reach out to |
Merged
|
Many thanks :-) |
|
For maintainers only:
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I have an issue that I believe should be reported non-publicly (it may end up being deemed safe enough to report via GitHub but I'd rather ask first), however I couldn't find a security bug reporting process documented on any of:
https://github.com/webpack/webpack/blob/master/README.md
https://github.com/webpack/webpack/blob/master/CONTRIBUTING.md
https://webpack.js.org/support/
https://webpack.js.org/development/
Please could a process be created/documented?
Thanks!
The text was updated successfully, but these errors were encountered: