node-deep-extend icon indicating copy to clipboard operation
node-deep-extend copied to clipboard

Published 20 hours ago verified publisher icon unclechu

Create SECURITY.md

Open JamieSlome opened this issue 3 years ago • 1 comments

Hey there!

I belong to an open source security research community, and a member (@ranjit-git) has found an issue, but doesn’t know the best way to disclose it.

If not a hassle, might you kindly add a SECURITY.md file with an email, or another contact method? GitHub recommends this best practice to ensure security issues are responsibly disclosed, and it would serve as a simple instruction for security researchers in the future.

Thank you for your consideration, and I look forward to hearing from you!

(cc @huntr-helper)

JamieSlome avatar Jan 10 '22 15:01 JamieSlome

The Readme file states that bugs should be reported here in issues. I don't think this project is actively being enhanced. It is also under the MIT license. So, if you found a security issue, the responsible thing would be creating an issue here regarding it and fix it.

kev1010 avatar Jul 18 '23 20:07 kev1010