Security Point of Contact?

I’ve been doing some work on revising the contributing docs, and I noticed the security overview pages aren’t set up for the project. Is there a point of contact for confidential security vulnerability reports, like Linux’s security@kernel.org?

1 Like

Mind meld! I’ve been working on this today and updating/adding the contact in a couple places. The address is security@redwoodjs.com

FYI I’m working on the Security.md and security.txt for redwoodjs.com

Anywhere else we should add this that comes to mind?

Great! I’ll add a quicklink to it in the contributing.md file.

2 Likes

See:

1 Like