AnkitSharma-007 / BookCart

An e-commerce application for an online book store, created with ASP.NET Core and Angular, using SQL Server as a database
https://bookcart.azurewebsites.net/
MIT License
174 stars 125 forks source link

Add a security policy #18

Closed JamieSlome closed 2 years ago

JamieSlome commented 2 years ago

Hey there!

I belong to an open source security research community, and a member (@ibarrionuevo) has found an issue, but doesn’t know the best way to disclose it.

If not a hassle, might you kindly add a SECURITY.md file with an email, or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.

Thank you for your consideration, and I look forward to hearing from you!

(cc @huntr-helper)

AnkitSharma-007 commented 2 years ago

This is my personal project to learn and share knowledge. I am not sure how adding the SECURITY.md file will provide any benefits to it. Also, I am not comfortable sharing my email id in public.

acciobugs commented 2 years ago

We could help you to improve your project through security findings and fixes :)

JamieSlome commented 2 years ago

@AnkitSharma-007 - not to worry, if you would prefer, you can view the report directly here:

https://huntr.dev/bounties/d5ca47a7-0e9e-4910-bf27-298e88c6013a/