github.com/daeuniverse/quic-go@v0.0.0-20240413031024-943f218e0810/SECURITY.md (about)

     1  # Security Policy
     2  
     3  quic-go still in development. This means that there may be problems in our protocols,
     4  or there may be mistakes in our implementations.
     5  We take security vulnerabilities very seriously. If you discover a security issue,
     6  please bring it to our attention right away!
     7  
     8  ## Reporting a Vulnerability
     9  
    10  If you find a vulnerability that may affect live deployments -- for example, by exposing
    11  a remote execution exploit -- please [**report privately**](https://github.com/daeuniverse/quic-go/security/advisories/new).
    12  Please **DO NOT file a public issue**.
    13  
    14  If the issue is an implementation weakness that cannot be immediately exploited or
    15  something not yet deployed, just discuss it openly.
    16  
    17  ## Reporting a non security bug
    18  
    19  For non-security bugs, please simply file a GitHub [issue](https://github.com/daeuniverse/quic-go/issues/new).