swagger-petstore icon indicating copy to clipboard operation
swagger-petstore copied to clipboard

Published 20 hours ago verified publisher icon swagger-api

Add a security policy

Open zidingz opened this issue 4 years ago • 1 comments

Hey there!

I belong to an open source security research community, and a member (@shellinjector) has found an issue, but doesn’t know the best way to disclose it.

If not a hassle, might you kindly add a SECURITY.md file with an email, or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.

Thank you for your consideration, and I look forward to hearing from you!

(cc @huntr-helper)

zidingz avatar Oct 01 '21 13:10 zidingz

Thank you, created https://github.com/swagger-api/swagger-petstore/pull/72 to address that. For security related issues please send an email to [email protected], thank you!

ponelat avatar Oct 01 '21 14:10 ponelat