You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: SECURITY.md
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -11,7 +11,7 @@ We release patches for security vulnerabilities. Which versions are eligible rec
11
11
12
12
## Reporting a Vulnerability
13
13
14
-
Please report (suspected) security vulnerabilities by opening a pull request in this repository with the **type: bug** label. If the issue is confirmed, we will release a patch as soon as possible depending on complexity but historically within a few days.
14
+
Please report (suspected) security vulnerabilities with the [Private Vulnerability Reporting](https://github.com/Password4j/password4j/security/advisories/new) functionality. If the issue is confirmed, we will release a patch as soon as possible depending on complexity but historically within a few days.
15
15
16
16
We generally **aren’t** interested in the following problems:
17
17
* Any vulnerability with a [<span>CVSS 3</span>](https://www.first.org/cvss/calculator/3.0) score lower than `4.0`, unless it can be combined with other vulnerabilities to achieve a higher score.
0 commit comments