imroc
commented
2 months ago Thanks for your feedback, SECURITY.md is created, you can send it to roc@imroc.cc
Closed zer0yu closed 2 months ago
imroc
commented
2 months ago Thanks for your feedback, SECURITY.md is created, you can send it to roc@imroc.cc
zer0yu
commented
2 months ago Thank you for your response, I have emailed you the vulnerability report.
Hey there!
I am an open-source security researcher who has identified a security issue, but I am unsure of the best way to disclose it.
If not a hassle, might you kindly add a SECURITY.md file with an email or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.
Thank you for your consideration, and I look forward to hearing from you!