summaryrefslogtreecommitdiff
path: root/vendor/github.com/microcosm-cc/bluemonday/SECURITY.md
diff options
context:
space:
mode:
Diffstat (limited to 'vendor/github.com/microcosm-cc/bluemonday/SECURITY.md')
-rw-r--r--vendor/github.com/microcosm-cc/bluemonday/SECURITY.md8
1 files changed, 3 insertions, 5 deletions
diff --git a/vendor/github.com/microcosm-cc/bluemonday/SECURITY.md b/vendor/github.com/microcosm-cc/bluemonday/SECURITY.md
index a344e7c05..682364e37 100644
--- a/vendor/github.com/microcosm-cc/bluemonday/SECURITY.md
+++ b/vendor/github.com/microcosm-cc/bluemonday/SECURITY.md
@@ -4,12 +4,10 @@
Latest tag and tip are supported.
-Older tags remain present but changes result in new tags and are not back ported... please verify any issue against the latest tag and tip.
+Changes are not backported, please verify any issue against the latest tag and tip.
## Reporting a Vulnerability
-Email: <bluemonday@buro9.com>
+Report vulnerabilities either via [GitHub's private reporting flow](https://github.com/microcosm-cc/bluemonday/security/advisories/new) or via email to the security@ alias of geomys.org.
-Bluemonday is pure OSS and not maintained by a company. As such there is no bug bounty program but security issues will be taken seriously and resolved as soon as possible.
-
-The maintainer lives in the United Kingdom and whilst the email is monitored expect a reply or ACK when the maintainer is awake.
+There is no bug bounty program but security issues will be taken seriously and resolved as soon as possible.
generated by cgit v1.3 (git 2.53.0) at 2026-04-28 03:24:55 +0000