Potential Security Issue
supriza opened this issue · comments
Raul Onitza-Klugman commented
Hi @benatkin @ljharb @karlbohlmark @grncdr @harthur ,
My name is Raul and I'm a security researcher at Snyk. There might be a security issue in your package.
Where can I contact you in private to discuss things?
Thanks!
Jordan Harband commented
Hi @supriza; the security policy at https://github.com/ljharb/js-traverse/security/policy should cover this :-)
Raul Onitza-Klugman commented
Thanks @ljharb, I missed that!
Benjamin Atkin commented
such willingness to waste my time _._
more inclined to go w/ socket.dev now =)
Jordan Harband commented
@benatkin i'm not sure what you mean?
Benjamin Atkin commented
@ljharb I mean a security researcher from Snyk mentioned my name in a list and didn't check for a security policy
not a big deal I guess :)
Jordan Harband commented
Going to close this for now.