mlindgren
commented
4 months ago Thank you for your contribution! Unfortunately, as described in our readme, we cannot accept external code contributions except in specific circumstances from vetted partners with whom we have a pre-arranged agreement. However, I do think these changes address a real issue that needs to be solved, so I will make a similar commit in our upstream repo and then push it back to GitHub, with an acknowledgement to you as the original submitter. Let me know if you have any concerns.
If you believe you have a pull request that addresses a security issue in the SymCrypt code, please do NOT create a GitHub pull request, but instead email your issue details to secure@microsoft.com. Your report may be eligible for a bug bounty, but ONLY if it is reported through email.