Skip to content

Security: xrpscan/xrpl-go

SECURITY.md

Security Policy

Found a security issue in a XRPScan project? Read on.

Reporting a Vulnerability

Vulnerabilities should be reported to support@xrpscan.com - which is a private ticketing system monitored by the project maintainers. We will attempt to respond to/confirm reports within 2-3 days, but if you believe your report to be "critical" to user safety and security, please note as such in the subject. We have tens of thousands of users using our services, and take security vulnerabilities seriously.

When reporting an issue, where possible, please provide at least:

  • The project and commit version the issue was identified at
  • A proof of concept (plaintext; no binaries)
  • Steps to reproduce
  • Your recommended remediation(s), if any.

The project maintainers may reach back out for clarification.

Note: Please do not open public issues for security issues, as GitHub does not provide facility for private issues, and deleting the issue makes it hard to triage/respond back to the reporter.

There aren’t any published security advisories