github.com/metacubex/quic-go@v0.44.1-0.20240520163451-20b689a59136/SECURITY.md (about)

     1  # Security Policy
     2  
     3  quic-go still in development. This means that there may be problems in our protocols,
     4  or there may be mistakes in our implementations.
     5  We take security vulnerabilities very seriously. If you discover a security issue,
     6  please bring it to our attention right away!
     7  
     8  ## Reporting a Vulnerability
     9  
    10  If you find a vulnerability that may affect live deployments -- for example, by exposing
    11  a remote execution exploit -- please [**report privately**](https://github.com/metacubex/quic-go/security/advisories/new).
    12  Please **DO NOT file a public issue**.
    13  
    14  If the issue is an implementation weakness that cannot be immediately exploited or
    15  something not yet deployed, just discuss it openly.
    16  
    17  ## Reporting a non security bug
    18  
    19  For non-security bugs, please simply file a GitHub [issue](https://github.com/metacubex/quic-go/issues/new).