Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add SECURITY.md file #2507

Closed
1 of 6 tasks
bananabr opened this issue Oct 8, 2024 · 2 comments
Closed
1 of 6 tasks

Add SECURITY.md file #2507

bananabr opened this issue Oct 8, 2024 · 2 comments
Assignees
@Viraj-10
Labels
bug Something isn't working

Comments

@bananabr
Copy link

bananabr commented Oct 8, 2024

Description

The repository doesn't contain a SECURITY.md file with contact instructions to report security vulnerabilities.

CodeSandbox/Snack link

N/A

Steps to reproduce

Please add a SECURITY.md file or provide instructions for a security vulnerability to be reported.

Thank you,

gluestack-ui Version

latest

Platform

  • Expo
  • React Native CLI
  • Next
  • Web
  • Android
  • iOS

Other Platform

No response

Additional Information

No response
@bananabr bananabr added the bug Something isn't working label Oct 8, 2024
@Viraj-10
Copy link
Collaborator

Viraj-10 commented Oct 9, 2024

Hey @bananabr, gluestack-ui is a UI component library that depends on numerous npm packages, each of which may have their own dependencies. To check for security vulnerabilities and related issues in your project, you can run npm audit in your repository. This will give you a detailed report of any identified vulnerabilities.

@Viraj-10 Viraj-10 closed this as completed Oct 9, 2024
@bananabr
Copy link
Author

bananabr commented Oct 9, 2024

Hey @Viraj-10,

Sorry if I didn't make myself clear enough. I have something to report to the gluestack-ui project maintainers. Best practice dictates that security contacts be made public through a SECURITY.md file to facilitate this sort of sensitive communication.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Viraj-10 Viraj-10

Labels
bug Something isn't working
Projects
gluestack-ui project management.
Status: Done
Milestone
No milestone
Development

No branches or pull requests
2 participants
@bananabr @Viraj-10