Closed randombit closed 5 years ago
The AspNetCore project has following information in their template:
Thanks @Suchiman I just mailed that address hopefully it gets somewhere.
@NielsFerguson it'd be good to update the readme with this info too and put this in the new issue template, eh?
Thank you @randombit for reporting the bug through the proper channels. We'll have a fix ready very soon, but it won't show up here on GitHub until we have patches available for all machines that use this code.
@michael-hawker: I have updated the Readme with information on how to report security issues.
Thanks @NielsFerguson, you can also add a .github/ISSUE_TEMPLATE.md
file with those instructions so someone who goes to post a new issue can get the proper steps too before posting. 😊
I noticed a side channel and mailed a report to opensource@microsoft.com but never received a response. I had assumed I would get at least an autoreply that my message had been received. Is there some better way to report security issues in this code?