Add a security policy #3015
Labels
security
Pull requests that address a security vulnerability
Comments
|
Hmm, I think a potential source of vulnerabilities could come from the dependencies? Github has a dependabot security feature that can be enabled to detect dependencies that have security vulnerabilities and can automatically open a PR to resolve the issue by updating the tags. I did a scan with Lighthouse on up for grabs .net and it did find this: |
|
@jalaniz1 Thanks for checking on this. Can you please open up a PR for this? |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This would go along with #365's 3rd task as we would need a contact email for security:
It can be helpful to let people report security vulnerabilities to this repo - although I don't know how likely a security vulnerability is given that this is mostly a static site.
The text was updated successfully, but these errors were encountered: