Trying to get in touch regarding a security issue

leizongmin / js-xss

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist

http://jsxss.com

Other

5.19k stars 630 forks source link

Trying to get in touch regarding a security issue #238

Closed JamieSlome closed 2 years ago

JamieSlome commented 2 years ago

Hey there!

I'd like to report a security issue but cannot find contact instructions on your repository.

If not a hassle, might you kindly add a SECURITY.md file with an email, or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.

Thank you for your consideration, and I look forward to hearing from you!

(cc @huntr-helper)

leizongmin commented 2 years ago

Thanks for your suggestion, I have just add a SECURITY.md file.