You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We're *glad* if you want to report a vulnerability!
4
+
5
+
If you wish to propose text to explain how to detect and prevent a *kind*
6
+
of vulnerability that is already publicly known, please just file a normal
7
+
issue and/or pull request. We don't consider that a "vulnerability report"
8
+
in the sense that many people use the term.
9
+
10
+
In some cases we're the wrong place to report vulnerabilities to:
11
+
12
+
* If you wish to report a vulnerability on a specific project that isn't
13
+
this project, please don't report that here. Instead, please report the
14
+
vulnerability to that project.
15
+
* If you wish to report a general vulnerability in edX or the
16
+
Linux Foundation Training & Certification platform, please report the
17
+
vulnerability to them instead.
18
+
19
+
However, in some cases we *do* want you to report a vulnerability to us:
20
+
21
+
* If you wish to report a vulnerability in this *specific* course
22
+
as supported by the Linux Foundation (via edX or the Linux Foundation
23
+
Training & Certification platform).
24
+
* If you wish to propose text to explain how to detect and prevent a *kind*
25
+
of vulnerability that has *never* been publicly announced or
26
+
discussed anywhere.
27
+
28
+
If you want to report those kinds of vulnerabilities to us,
29
+
please use the GitHub mechanism [privately reporting a security vulnerability](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing/privately-reporting-a-security-vulnerability) to this repository.
0 commit comments