Wiki source code of How to Report a Security Issue
Last modified by Sean Hetherington on 2021/09/10 22:40
Show last authors
| author | version | line-number | content |
|---|---|---|---|
| 1 | == Finding and Reporting a Security Vulnerability == | ||
| 2 | |||
| 3 | If you find a security bug in the product, please open an issue on [[http:~~/~~/www.getisymphony.com/support>>url:http://www.getisymphony.com/support||shape="rect"]]. | ||
| 4 | |||
| 5 | * Provide as much information on reproducing the bug as possible. | ||
| 6 | |||
| 7 | All communication about the vulnerability should be performed through the ticket system, so that i9 Technologies can keep track of the issue and get a patch out as soon as possible. | ||
| 8 | |||
| 9 | (% class="panelMacro" %) | ||
| 10 | ((( | ||
| 11 | |||
| 12 | |||
| 13 | {{info}} | ||
| 14 | If you discover a security vulnerability, please attempt to create a test case that proves this vulnerability locally before opening either a bug or a support issue. When creating an issue, please include information on how the vulnerability can be reproduced; see our [[doc:Bug Fixing Policy]] for general bug reporting guidelines. We will prioritise fixing the reported vulnerability if your report has information on how the vulnerability can be exploited. | ||
| 15 | {{/info}} | ||
| 16 | ))) |