Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

How to get in touch regarding a security concern #2797

Open
psmoros opened this issue May 29, 2023 · 3 comments
Open

How to get in touch regarding a security concern #2797

psmoros opened this issue May 29, 2023 · 3 comments

Comments

@psmoros
Copy link

psmoros commented May 29, 2023

Hello 👋

I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@0xDivyanshu) has found a potential issue, which I would be eager to share with you.

Could you add a SECURITY.md file with an e-mail address for me to send further details to? GitHub recommends a security policy to ensure issues are responsibly disclosed, and it would help direct researchers in the future.

Looking forward to hearing from you 👍

(cc @huntr-helper)

@babel-bot
Copy link
Contributor

Hey @psmoros! We really appreciate you taking the time to report an issue. The collaborators
on this project attempt to help as many people as possible, but we're a limited number of volunteers,
so it's possible this won't be addressed swiftly.

If you need any help, or just have general Babel or JavaScript questions, we have a vibrant Slack
community
that typically always has someone willing to help. You can sign-up here
for an invite.

@JLHwung
Copy link
Contributor

JLHwung commented May 29, 2023

Please temporarily refer to https://github.com/babel/babel/blob/main/SECURITY.md#reporting-a-vulnerability if you want to report a vulnerability. We will add a SECURITY.md later.

@psmoros
Copy link
Author

psmoros commented Jun 6, 2023

Thanks will do :))

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants