You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We really should provide guidance on how to open a security
issue on Bandit itself.
Tidelift also requires a security policy document that they can
refer to and help coordinate for their customers.
Bandit is a tool designed to find security issues, so every effort is made that Bandit itself is also
4
+
free of those issues. However, if you believe you have found a security vulnerability in this repository
5
+
please open it privately via the [Report a security vulnerability](https://github.com/PyCQA/bandit/security/advisories/new) link in the Issues tab.
6
+
7
+
**Please do not report security vulnerabilities through public issues, discussions, or pull requests.**
8
+
9
+
Please also inform the [Tidelift security](https://tidelift.com/security). Tidelift will help coordinate the fix and disclosure.
0 commit comments