paul-gerste-sonarsource
commented
7 months ago Hey @rafiss @johto, you were the latest active maintainers I could find in PRs. Would one of you be able to give this a look? If not, who would be a better person to contact?
Thanks!
Hi! 👋
I found and verified a security vulnerability affecting the latest version of pq.
I want to disclose the issues to the maintainers responsibly, so I'm looking for a security contact (e.g., an email address) to send the details privately. Also happy to help with patches if needed.
Thanks!