Potential security issue

codemation / easyauth

Create a centralized Authentication and Authorization token server. Easily secure FastAPI endpoints based on Users, Groups, Roles or Permissions with very little database usage.

https://easyauth.readthedocs.io/en/latest/

MIT License

553 stars 52 forks source link

Potential security issue #94

Closed psmoros closed 1 year ago

psmoros commented 1 year ago

Hello 👋

I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@notnci) has found a potential issue, which I would be eager to share with you.

Could you add a SECURITY.md file with an e-mail address for me to send further details to? GitHub recommends a security policy to ensure issues are responsibly disclosed, and it would help direct researchers in the future.

Looking forward to hearing from you 👍

(cc @huntr-helper)

codemation commented 1 year ago

@psmoros - Thanks for reaching out. I will update the repository with a SECURITY.md as suggested. I look forward to reviewing and addressing the issue.