You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hello!
I was doing vulnerability research on a project that uses your library as a dependency. During the research, I found a vulnerability that I have already informed the vendor about. It's been a long time, but the vendor hasn't passed the information on to you, so I decided to do it myself. Although the vulnerability is not critical, I would still like to know which secure channels I can use to send information about the vulnerability so that you can also check it? I could not find an email intended for such purposes, nor a PGP key, nor anything else. Thanks.
The text was updated successfully, but these errors were encountered:
Hello!
I was doing vulnerability research on a project that uses your library as a dependency. During the research, I found a vulnerability that I have already informed the vendor about. It's been a long time, but the vendor hasn't passed the information on to you, so I decided to do it myself. Although the vulnerability is not critical, I would still like to know which secure channels I can use to send information about the vulnerability so that you can also check it? I could not find an email intended for such purposes, nor a PGP key, nor anything else. Thanks.
The text was updated successfully, but these errors were encountered: