Security related communications¶
Please consult my general security policy and any project
or org/project-specific policies (via its own SECURITY.md
file) before proceeding here.
Otherwise, you'll be ignored at best or blocked/muted and reported as spam at worst.
Looking for PGP keys?¶
If you're looking for my PGP keys, please visit this page.
Submitting security patches¶
If you also want to submit a security patch, please DO NOT mention about the vunlerability within the patch (unless via the specialized security mailing list mentioned below).
via email¶
Please send security patches at ~ajhalili2006/[email protected]
instead of the public inbox if you using email to submit patches. Access to the mailing list
archives is limited to few trusted people alongside myself.
as confidential GitLab merge request¶
When submitting a security-senstive patch in GitLab, don't forget to mark it as confidential merge request or request to access to security patches-only private fork. See GitLab Docs for details.
See also¶
- Encrypted Communications for additional guidance regarding using PGP and EE2E chat over Matrix