mirror of
https://github.com/libevent/libevent.git
synced 2025-01-09 00:56:20 +08:00
bca26524fc
I've created the SECURITY.md file following a GitHub's template and considering the report vulnerability through security advisory, which is a handy new GitHub feature (but it's still in beta and has to be enabled). Closes #1461 Co-authored-by: Azat Khuzhin <a3at.mail@gmail.com>
12 lines
688 B
Markdown
12 lines
688 B
Markdown
# Security Policy
|
|
|
|
## Supported Versions
|
|
Security updates are applied only to 2.1 and 2.2 latest stable releases.
|
|
|
|
## Reporting a Vulnerability
|
|
If you have discovered a security vulnerability in this project, please report it privately. **Do not disclose it as a public issue.** This gives us time to work with you to fix the issue before public exposure, reducing the chance that the exploit will be used before a patch is released.
|
|
|
|
Please disclose it at [security advisory](https://github.com/libevent/libevent/security/advisories/new).
|
|
|
|
This project is maintained by a team of volunteers on a reasonable-effort basis. As such, vulnerabilities will be disclosed in a best effort base.
|