From bd65bb67e25a79b019d745b7262b2008ce2adb15 Mon Sep 17 00:00:00 2001 From: Florian Dold Date: Wed, 16 Nov 2016 01:59:39 +0100 Subject: incrementally verify denoms The denominations are not stored in a separate object store. --- node_modules/ws/SECURITY.md | 33 --------------------------------- 1 file changed, 33 deletions(-) delete mode 100644 node_modules/ws/SECURITY.md (limited to 'node_modules/ws/SECURITY.md') diff --git a/node_modules/ws/SECURITY.md b/node_modules/ws/SECURITY.md deleted file mode 100644 index fd8e07bc5..000000000 --- a/node_modules/ws/SECURITY.md +++ /dev/null @@ -1,33 +0,0 @@ -# Security Guidelines - -Please contact us directly at **security@3rd-Eden.com** for any bug that might -impact the security of this project. Please prefix the subject of your email -with `[security]` in lowercase and square brackets. Our email filters will -automatically prevent these messages from being moved to our spam box. - -You will receive an acknowledgement of your report within **24 hours**. - -All emails that do not include security vulnerabilities will be removed and -blocked instantly. - -## Exceptions - -If you do not receive an acknowledgement within the said time frame please give -us the benefit of the doubt as it's possible that we haven't seen it yet. In -this case please send us a message **without details** using one of the -following methods: - -- Contact the lead developers of this project on their personal e-mails. You - can find the e-mails in the git logs, for example using the following command: - `git --no-pager show -s --format='%an <%ae>' ` where `` is the - SHA1 of their latest commit in the project. -- Create a GitHub issue stating contact details and the severity of the issue. - -Once we have acknowledged receipt of your report and confirmed the bug -ourselves we will work with you to fix the vulnerability and publicly acknowledge -your responsible disclosure, if you wish. In addition to that we will report -all vulnerabilities to the [Node Security Project](https://nodesecurity.io/). - -## History - -04 Jan 2016: [Buffer vulnerablity](https://github.com/websockets/ws/releases/tag/1.0.1) -- cgit v1.2.3