libreborme icon indicating copy to clipboard operation
libreborme copied to clipboard
verified publisher icon PabloCastellano

Who to contact for security issues

Open zidingz opened this issue 4 years ago • 2 comments

Hey there!

I belong to an open source security research community, and a member (@dig2) has found an issue, but doesn’t know the best way to disclose it.

If not a hassle, might you kindly add a SECURITY.md file with an email, or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.

Thank you for your consideration, and I look forward to hearing from you!

(cc @huntr-helper)

zidingz avatar Nov 16 '21 06:11 zidingz

Hello @zidingz. This repo contains the source code for an obsolete version of the website.

To the best of my knowledge it is not running anywhere online. Feel free to disclose the issue here or to contacto AT libreborme.net

PabloCastellano avatar Nov 18 '21 11:11 PabloCastellano

@PabloCastellano - here is the report for your reference:

https://huntr.dev/bounties/fbefb41c-4bf7-4234-9ab1-df1d04e9ca43/

JamieSlome avatar Nov 18 '21 12:11 JamieSlome