Skip to content

Preferred private channel for reporting security issues? #1214

Description

@360AlphaLab

Hi maintainers,

I have identified two potential security issues in RuView and would like to report them responsibly.

I could not find a SECURITY.md file or a documented vulnerability disclosure process for this repository. I also do not want to disclose technical details, reproduction steps, or proof-of-concept information publicly in a GitHub issue.

Could you please let me know the preferred private channel for reporting security issues, or enable GitHub private vulnerability reporting for this repository?

I can provide the following privately:

  • affected files and versions/commit ranges
  • impact assessment and severity
  • reproduction steps
  • proof-of-concept evidence
  • recommended remediation options

Thanks.

Metadata

Metadata

Assignees

No one assigned

    Labels

    questionFurther information is requested

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions