search

Kunstmaan / KunstmaanBundlesCMS

An advanced yet user-friendly content management system, based on the full stack Symfony framework combined with a whole host of community bundles. It provides a full featured, multi-language CMS system with an innovative page and form assembling process, versioning, workflow, translation and media managers and much more.
https://kunstmaancms.be
MIT License
403 stars 187 forks source link

Who to contact for security issues #2974

Closed zidingz closed 2 years ago

zidingz commented 2 years ago

Hey there!

I belong to an open source security research community, and a member (@nareshsarnala) has found an issue, but doesn’t know the best way to disclose it.

If not a hassle, might you kindly add a SECURITY.md file with an email, or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.

Thank you for your consideration, and I look forward to hearing from you!

(cc @huntr-helper)

acrobat commented 2 years ago

Hi @zidingz, I will add it to my todo to setup the SECURITY.md but in the meantime you can send any security issues to cms[at]kunstmaan.be. Thanks!