You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/attack_review_ground_rules.md
+2-1Lines changed: 2 additions & 1 deletion
Original file line number
Diff line number
Diff line change
@@ -20,7 +20,8 @@ This is not an exhaustive list and creative attacks are welcome.
20
20
If you find the web interface cumbersome, feel free to download and test the sanitizer directly. See [GettingStarted](getting_started.md) for instructions.
21
21
22
22
## Reporting Vulnerabilities
23
-
Please report successful attacks with example input via [OWASP's bugcrowd queue](https://bugcrowd.com/owaspjavasanitizer).
23
+
Please report successful attacks with example input via [OWASP's bugcrowd queue](https://bugcrowd.com/owaspjavasanitizer)
24
+
or contact [@mikesamuel] and I will create a [repository security advisory](https://docs.github.com/en/code-security/security-advisories/repository-security-advisories/creating-a-repository-security-advisory) to coordinate.
24
25
25
26
If you wish to be credited, please provide a name or handle for me to credit.
0 commit comments