Add SECURITY.md File

author W. Felix Handte <w@felixhandte.com>

Tue, 13 Feb 2024 16:50:55 +0000 (11:50 -0500)

committer W. Felix Handte <w@felixhandte.com>

Tue, 13 Feb 2024 16:50:55 +0000 (11:50 -0500)
author W. Felix Handte <w@felixhandte.com>
Tue, 13 Feb 2024 16:50:55 +0000 (11:50 -0500)
committer W. Felix Handte <w@felixhandte.com>
Tue, 13 Feb 2024 16:50:55 +0000 (11:50 -0500)
diff --git a/SECURITY.md b/SECURITY.md

new file mode 100644 (file)

index 0000000..4e5f09c
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,7 @@
+# Reporting and Fixing Security Issues
+
+Please do not open GitHub issues or pull requests - this makes the problem immediately visible to everyone, including malicious actors. Security issues in this open source project can be safely reported via the Meta Bug Bounty program:
+
+https://www.facebook.com/whitehat
+
+Meta's security team will triage your report and determine whether or not is it eligible for a bounty under our program.
author	W. Felix Handte <w@felixhandte.com>
	Tue, 13 Feb 2024 16:50:55 +0000 (11:50 -0500)
committer	W. Felix Handte <w@felixhandte.com>
	Tue, 13 Feb 2024 16:50:55 +0000 (11:50 -0500)