search

EhPanda-Team / EhPanda

An unofficial E-Hentai App for iOS built with SwiftUI & TCA.
https://ehpanda.app
MIT License
3k stars 204 forks source link

Reporting a vulnerability #337

Closed argusSecurityBot closed 10 months ago

argusSecurityBot commented 1 year ago

Hello!

I hope you are doing well!

We are a security research team. Our tool automatically detected a vulnerability in this repository. We want to disclose it responsibly. GitHub has a feature called Private vulnerability reporting, which enables security research to privately disclose a vulnerability. Unfortunately, it is not enabled for this repository.

Can you enable it, so that we can report it?

Thanks in advance!

PS: you can read about how to enable private vulnerability reporting here: https://docs.github.com/en/code-security/security-advisories/repository-security-advisories/configuring-private-vulnerability-reporting-for-a-repository

tatsuz0u commented 10 months ago

We have received a similar issue earlier and the issuer stop responding after we turned that vulnerability reporting feature on.

Sorry but we will take no action this time.

cc @chihchy please close issue if no response from the issuer in 3d.

tatsuz0u commented 10 months ago

OK maybe we should just turn that feature on again. cc @chihchy