search

toss / es-toolkit

A modern JavaScript utility library that's 2-3 times faster and up to 97% smaller—a major upgrade to lodash.
https://es-toolkit.slash.page
Other
6.25k stars 263 forks source link

Create SECURITY.md #474

Closed Hotanya closed 1 week ago

Hotanya commented 1 week ago

Adding a SECURITY.md so any identified security issues can be reported and triaged.

vercel[bot] commented 1 week ago

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
es-toolkit ✅ Ready (Inspect) Visit Preview 💬 Add feedback Sep 7, 2024 3:09am
raon0211 commented 1 week ago

Thanks! We should add a security policy, but I guess we have to add the contents before adding this file.

codecov-commenter commented 1 week ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 99.78%. Comparing base (cb33fd2) to head (ce2d531).

Additional details and impacted files [![Impacted file tree graph](https://app.codecov.io/gh/toss/es-toolkit/pull/474/graphs/tree.svg?width=650&height=150&src=pr&token=8N5S3AR3C7&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=toss)](https://app.codecov.io/gh/toss/es-toolkit/pull/474?src=pr&el=tree&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=toss) ```diff @@ Coverage Diff @@ ## main #474 +/- ## ======================================= Coverage 99.78% 99.78% ======================================= Files 177 177 Lines 1380 1380 Branches 366 366 ======================================= Hits 1377 1377 Misses 2 2 Partials 1 1 ```
Hotanya commented 1 week ago

Hey thanks for the prompt response. I've identified a security vulnerability in this project, once the SECURITY.md is setup, I can report it securely to you. You can take a look at https://github.com/projectdiscovery/nuclei/security for an example of the security.md file contents.