Open JarLob opened 3 weeks ago
To report a security vulnerability in ant-design-blazor, it's important to follow the project's security policy. Typically, open-source projects have a dedicated security contact or a process for reporting vulnerabilities. Here are some general steps you can take:
Check the Security Policy: Look for a SECURITY.md
file in the repository, which often contains instructions on how to report vulnerabilities.
Contact Maintainers: If the email you tried didn't get a response, you might want to try reaching out to the maintainers through other means, such as opening a private issue if the repository supports it, or contacting them through their GitHub profiles.
GitHub Security Advisories: You can also use GitHub's security advisories feature to report vulnerabilities directly through GitHub if the repository has it enabled.
Since you mentioned that you didn't get a response from the email, I recommend checking the repository for any additional contact information or security reporting guidelines. If you need further assistance, feel free to ask!
Hello @JarLob , I'm sorry I didn't catch your email. May I ask what is the best way to do this? Because I don't know much about it yet.
I think the most convenient would be if you could enable private advisories in the repository. This would allow to continue conversation in private space with maintainers. Otherwise any email limited to maintainers is fine too. Should I just repeat the email to shunjiey at hotmail.com? Is it correct address?
Yes, the email address is correct.
Just resent it. Please check your spam folder if needed and confirm receipt.
Hello, I'm a member of GitHub Security Lab. How can we report a security vulnerability in ant-design-blazor? We have tried sending email to shunjiey at hotmail.com on 2024-10-10, but didn't get a response.
@Epictek @ElderJames @mutouzdl @anddrzejb