ali-oss icon indicating copy to clipboard operation
ali-oss copied to clipboard
verified publisher icon ali-sdk

Trying to get in touch regarding a security issue

Open JamieSlome opened this issue 4 years ago • 2 comments

Hi there,

I couldn't find a SECURITY.md in your repository and am not sure how to best contact you privately to disclose a security issue.

Can you add a SECURITY.md file with an e-mail to your repository, so that our system can send you the vulnerability details? GitHub suggests that a security policy is the best way to make sure security issues are responsibly disclosed.

Once you've done that, you should receive an e-mail within the next hour with more info.

Thanks! (cc @huntr-helper)

JamieSlome avatar Jul 17 '21 14:07 JamieSlome

Your best bet is to contact a dev on ding talk. let me know.

ricky11 avatar Jan 13 '22 05:01 ricky11

Just for reference, the report can be viewed directly:

https://huntr.dev/bounties/66691f59-aa45-4b59-8fa3-802e07c7af38/

It is private and only visible to maintainers with repository write permissions.

JamieSlome avatar Jan 13 '22 13:01 JamieSlome