search

swiftyspiffy / twitch-token-generator

Repository for the source that sits on https://twitchtokengenerator.com
85 stars 11 forks source link

Trying to get in touch regarding a security issue #11

Closed JamieSlome closed 3 years ago

JamieSlome commented 3 years ago

Hi there,

I couldn't find a SECURITY.md in your repository and am not sure how to best contact you privately to disclose a security issue.

Can you add a SECURITY.md file with an e-mail to your repository, so that our system can send you the vulnerability details? GitHub suggests that a security policy is the best way to make sure security issues are responsibly disclosed.

Once you've done that, you should receive an e-mail within the next hour with more info.

Thanks! (cc @huntr-helper)

swiftyspiffy commented 3 years ago

Hey! Thanks for bringing my attention to both the missing SECURITY.md and this particular issue. I've added all my methods of contact there.

https://github.com/swiftyspiffy/twitch-token-generator/blob/master/SECURITY.md

swiftyspiffy commented 3 years ago

I have pushed out a change to fix this issue (not deployed to public repo at the moment).

Thanks again for bringing this to my attention. Closing, feel free to reopen if necessary.