diff options
author | Luke Karrys <luke@lukekarrys.com> | 2022-11-09 21:36:52 +0300 |
---|---|---|
committer | Luke Karrys <luke@lukekarrys.com> | 2022-11-10 00:14:08 +0300 |
commit | 46b2728adbd1ca5a21bff1b874a8df2d9fbfe638 (patch) | |
tree | 182ab1a9d77a45f7b5fe8879470fdddcd254fbc5 /SECURITY.md | |
parent | a767aae7148dbbc943095ba994bbfab58bf2a8be (diff) |
chore: @npmcli/template-oss@4.9.0
Diffstat (limited to 'SECURITY.md')
-rw-r--r-- | SECURITY.md | 13 |
1 files changed, 12 insertions, 1 deletions
diff --git a/SECURITY.md b/SECURITY.md index a93106d0c..4e7c26c66 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,3 +1,14 @@ <!-- This file is automatically added by @npmcli/template-oss. Do not edit. --> -Please send vulnerability reports through [hackerone](https://hackerone.com/github). +GitHub takes the security of our software products and services seriously, including the open source code repositories managed through our GitHub organizations, such as [GitHub](https://github.com/GitHub). + +If you believe you have found a security vulnerability in this GitHub-owned open source repository, you can report it to us in one of two ways. + +If the vulnerability you have found is *not* [in scope for the GitHub Bug Bounty Program](https://bounty.github.com/#scope) or if you do not wish to be considered for a bounty reward, please report the issue to us directly using [private vulnerability reporting](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing/privately-reporting-a-security-vulnerability). + +If the vulnerability you have found is [in scope for the GitHub Bug Bounty Program](https://bounty.github.com/#scope) and you would like for your finding to be considered for a bounty reward, please submit the vulnerability to us through [HackerOne](https://hackerone.com/github) in order to be eligible to receive a bounty award. + +**Please do not report security vulnerabilities through public GitHub issues, discussions, or pull requests.** + +Thanks for helping make GitHub safe for everyone. + |