1
0
mirror of https://github.com/ohmyzsh/ohmyzsh.git synced 2024-11-22 01:33:50 +08:00

chore: clarify order of preference for reporting vulnerabilities

This commit is contained in:
Marc Cornellà 2024-07-24 19:47:18 +02:00
parent 7303385b1f
commit 5e957cdc16
No known key found for this signature in database
GPG Key ID: 0314585E776A9C1B

View File

@ -17,7 +17,7 @@ In the near future we will introduce versioning, so expect this section to chang
**Do not submit an issue or pull request**: this might reveal the vulnerability.
Instead, you should email the maintainers directly at: [**security@ohmyz.sh**](mailto:security@ohmyz.sh),
or using the link to [privately report a vulnerability with GitHub](https://github.com/ohmyzsh/ohmyzsh/security/advisories/new).
Instead, you should use the form to [privately report a vulnerability to us via GitHub](https://github.com/ohmyzsh/ohmyzsh/security/advisories/new)
or email the maintainers directly at: [**security@ohmyz.sh**](mailto:security@ohmyz.sh).
We will deal with the vulnerability privately and submit a patch as soon as possible.