The maintainers of this project take security seriously and encourage responsible disclosure of potential vulnerabilities.
If you discover a potential security issue, please do not open a public GitHub issue.
Instead, report the vulnerability privately to Red Hat Product Security at secalert@redhat.com so it can be investigated and resolved before public disclosure. You can use our GPG key to communicate with us securely.
To report an issue in any Red Hat branded website or online service, please contact Red Hat Information Security at site-security@redhat.com.
https://access.redhat.com/security/team/contact
When reporting a vulnerability, please include:
- A clear description of the issue
- Steps required to reproduce the problem
- The potential impact of the vulnerability
- Any relevant logs or proof-of-concept code
Providing detailed information helps maintainers understand and resolve the issue more quickly.
Please allow maintainers reasonable time to investigate and fix reported issues before publicly disclosing vulnerability details.
We appreciate the efforts of security researchers and community members who help improve the security of this project.