mirror of
https://github.com/louislam/uptime-kuma.git
synced 2025-02-22 19:45:56 +00:00
7482d5824d
Some checks failed
Auto Test / armv7-simple-test (18, ARMv7) (push) Has been cancelled
Auto Test / armv7-simple-test (20, ARMv7) (push) Has been cancelled
Auto Test / check-linters (push) Has been cancelled
Auto Test / e2e-test (push) Has been cancelled
CodeQL / Analyze (push) Has been cancelled
Merge Conflict Labeler / Labeling (push) Has been cancelled
validate / json-yaml-validate (push) Has been cancelled
validate / validate (push) Has been cancelled
Auto Test / auto-test (18, ARM64) (push) Has been cancelled
Auto Test / auto-test (18, macos-latest) (push) Has been cancelled
Auto Test / auto-test (18, ubuntu-latest) (push) Has been cancelled
Auto Test / auto-test (18, windows-latest) (push) Has been cancelled
Auto Test / auto-test (20, ARM64) (push) Has been cancelled
Auto Test / auto-test (20, macos-latest) (push) Has been cancelled
Auto Test / auto-test (20, ubuntu-latest) (push) Has been cancelled
Auto Test / auto-test (20, windows-latest) (push) Has been cancelled
45 lines
2.4 KiB
YAML
45 lines
2.4 KiB
YAML
---
|
|
name: "🛡️ Security Issue"
|
|
description: |
|
|
Notify Louis Lam about a security concern. Please do NOT include any sensitive details in this issue.
|
|
# title: "Security Issue"
|
|
labels: [security]
|
|
assignees: [louislam]
|
|
body:
|
|
- type: "markdown"
|
|
attributes:
|
|
value: |
|
|
## **⚠️ Report a Security Vulnerability**
|
|
|
|
### **IMPORTANT: DO NOT SHARE VULNERABILITY DETAILS HERE**
|
|
|
|
If you have discovered a security vulnerability, please report it securely using the GitHub Security Advisory.
|
|
|
|
**Note**: This issue is only for notifying the maintainers of the repository, as the GitHub Security Advisory does not automatically send notifications.
|
|
|
|
- **Confidentiality**: The information you provide in the GitHub Security Advisory will initially remain confidential. However, once the vulnerability is addressed, the advisory will be publicly disclosed on GitHub.
|
|
- **Access and Visibility**: Until the advisory is published, it will only be visible to the maintainers of the repository and invited collaborators.
|
|
- **Credit**: You will be automatically credited as a contributor for identifying and reporting the vulnerability. Your contribution will be reflected in the MITRE Credit System.
|
|
- **Important Reminder**: **Do not include any sensitive or detailed vulnerability information in this issue.** This issue is only for sharing the advisory URL to notify the maintainers of the repository, not for discussing the vulnerability itself.
|
|
|
|
**Thank you for helping us keep Uptime Kuma secure!**
|
|
|
|
## **Step 1: Submit a GitHub Security Advisory**
|
|
|
|
Right-click the link below and select `Open link in new tab` to access the page. This will keep the security issue open, allowing you to easily return and paste the Advisory URL here later.
|
|
|
|
➡️ [Create a New Security Advisory](https://github.com/louislam/uptime-kuma/security/advisories/new)
|
|
|
|
## **Step 2: Share the Advisory URL**
|
|
|
|
Once you've created your advisory, please share the URL below. This will notify Louis Lam and enable them to take the appropriate action.
|
|
|
|
- type: "textarea"
|
|
id: github-advisory-url
|
|
validations:
|
|
required: true
|
|
attributes:
|
|
label: "GitHub Advisory URL for @louislam"
|
|
placeholder: |
|
|
Please paste the GitHub Advisory URL here. Only the URL is required.
|
|
Example: https://github.com/louislam/uptime-kuma/security/advisories/GHSA-8h5r-7t6l-q3kz
|