Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create SECURITY.md #4191

Open
psmoros opened this issue May 12, 2024 · 2 comments
Open

Create SECURITY.md #4191

psmoros opened this issue May 12, 2024 · 2 comments
Assignees
@tonyhoo
Milestone
1.1.1 Release

Comments

@psmoros
Copy link

psmoros commented May 12, 2024

Hello 馃憢

I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@yuligesec) has found a potential issue, which I would be eager to share with you.

Could you add a SECURITY.md file with an e-mail address for me to send further details to? GitHub recommends a security policy to ensure issues are responsibly disclosed, and it would help direct researchers in the future.

Looking forward to hearing from you 馃憤

(cc @huntr-helper)
@Innixma Innixma added this to the 1.1.1 Release milestone May 15, 2024
@psmoros
Copy link
Author

psmoros commented May 17, 2024

Sent a magic link to innixma@gmail.com :) Let me know if that works

@psmoros psmoros closed this as completed May 17, 2024
@Innixma
Copy link
Contributor

Innixma commented May 17, 2024

Hi @psmoros, I received your email and responded, thanks! I'll re-open this issue since we have not yet created the SECURITY.md file, and I think it would be a good idea for us to do so.

Note to team: We can base the file off of sklearn's: https://github.com/scikit-learn/scikit-learn/blob/main/SECURITY.md

@Innixma Innixma reopened this May 17, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tonyhoo tonyhoo

Labels
None yet
Projects
None yet
Milestone
1.1.1 Release
Development

No branches or pull requests
3 participants
@tonyhoo @Innixma @psmoros