-
Hello 👋
I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@nicolai-h) has found a potential issue, which I would be eager to share with you.
Could you add a `SECU…
-
I recently discovered that [the statement about ring's disclosure policy statement was removed](https://github.com/briansmith/ring/commit/fd23fe916093c10a01ee515bd7467f0334761cff). The new security p…
-
Hey there!
I belong to an open source security research community, and a member (@hitisec) has found an issue, but doesn’t know the best way to disclose it.
If not a hassle, might you kindly add a `…
-
Hello 👋
I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@deniegajacob) has found a potential issue, which I would be eager to share with you.
Could you add a `S…
-
https://github.com/haskell/security-advisories/blob/main/advisories/hackage/cabal-install/HSEC-2023-0015.md
Has been disclosed without giving heads up to distributors (such as GHCup). Now GHCup is …
-
Hello 👋
I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@francoataffarel) has found a potential issue, which I would be eager to share with you.
Could you add a…
-
- Site: [https://literate-halibut-64vwjvp4452xvj-3000.app.github.dev](https://literate-halibut-64vwjvp4452xvj-3000.app.github.dev)
**New Alerts**
- **Content Security Policy (CSP) Header Not Set…
-
Is there a security disclosure policy for tinyfsm?
If a vulnerability is found, is it posted anywhere?
-
Having one of these is important, and, I would say, part of the platform's DNA: it states how it wants to treat its participants. A lousy disclosure policy says "we don't want smart, responsible users…
-
- Site: [https://not-gov.uk](https://not-gov.uk)
**New Alerts**
- **Modern Web Application** [10109] total: 12:
- [https://not-gov.uk/components?name=Back%20link](https://not-gov.uk/componen…