Wiki source code of How to Report a Security Issue
Last modified by Sean Hetherington on 2021/09/10 22:40
Show last authors
author | version | line-number | content |
---|---|---|---|
1 | == Finding and Reporting a Security Vulnerability == | ||
2 | |||
3 | If you find a security bug in the product, please open an issue on [[http:~~/~~/www.getisymphony.com/support>>url:http://www.getisymphony.com/support||shape="rect"]]. | ||
4 | |||
5 | * Provide as much information on reproducing the bug as possible. | ||
6 | |||
7 | All communication about the vulnerability should be performed through the ticket system, so that i9 Technologies can keep track of the issue and get a patch out as soon as possible. | ||
8 | |||
9 | (% class="panelMacro" %) | ||
10 | ((( | ||
11 | |||
12 | |||
13 | {{info}} | ||
14 | If you discover a security vulnerability, please attempt to create a test case that proves this vulnerability locally before opening either a bug or a support issue. When creating an issue, please include information on how the vulnerability can be reproduced; see our [[doc:Bug Fixing Policy]] for general bug reporting guidelines. We will prioritise fixing the reported vulnerability if your report has information on how the vulnerability can be exploited. | ||
15 | {{/info}} | ||
16 | ))) |