File tree Expand file tree Collapse file tree 1 file changed +5
-8
lines changed Expand file tree Collapse file tree 1 file changed +5
-8
lines changed Original file line number Diff line number Diff line change @@ -17,15 +17,12 @@ versions.
1717
1818## Reporting a Vulnerability
1919
20- If you have found a security vulnerability, in order to keep it confidential,
21- please do not report an issue on GitHub.
2220
23- Please email us details of the vulnerability at matplotlib-steering-council@numfocus.org ;
24- include a description and proof-of-concept that is [ short and
25- self-contained ] ( http://www.sscce.org/ ) .
21+ To report a security vulnerability, please use the [ Tidelift security
22+ contact ] ( https://tidelift.com/security ) . Tidelift will coordinate the fix and
23+ disclosure .
2624
27- You should expect a response within a week of your email. Depending on the
28- severity of the issue, this may require some time to draft an immediate bugfix
29- release. Less severe issues may be held until the next release.
25+ If you have found a security vulnerability, in order to keep it confidential,
26+ please do not report an issue on GitHub.
3027
3128We do not award bounties for security vulnerabilities.
You can’t perform that action at this time.
0 commit comments