Security: Please set up a vulnerability reporting channel

Hi EBAD maintainers,

I'm a security researcher who has found several security vulnerabilities in the EBAD codebase during a responsible review. Some of these are significant (command injection, credential exposure).

I'd like to report them privately, but I noticed that:
1. The repo does not have GitHub Private Vulnerability Reporting enabled
2. There is no security contact email configured

Could you please either:
- Enable [Private Vulnerability Reporting](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/privately-reporting-a-security-vulnerability) on this repository, OR
- Provide a security contact email address

I will share the findings privately once a secure channel is available.

Thank you for maintaining this project.

Best regards,
Wernerina (GitHub)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Security: Please set up a vulnerability reporting channel #668

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Security: Please set up a vulnerability reporting channel #668

Description

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions