If you believe you have found a security vulnerability in the project, please report it to security@redroselinux.org.
To help us process your report efficiently, you are encouraged to format the email subject like this:
[redroselinux/repository] short description of the issue
Example:
[redroselinux/car] vulnerability in delete step
You may also use a shorter format if the repository is clear:
[car] vulnerability in delete step
Please include as much detail as possible:
- A clear description of the issue
- Steps to reproduce the problem
- Affected versions or components
- Any proof-of-concept code or logs (if available)
- Please do not disclose the vulnerability publicly until it has been reviewed and addressed
- We will acknowledge your report as soon as possible and investigate it
If you would like to be credited for the report, please let us know. If you prefer to remain anonymous, you can state that in your report.