47 lines
1.4 KiB
YAML
47 lines
1.4 KiB
YAML
name: Security Vulnerability
|
|
about: Report a security vulnerability in this repository
|
|
labels:
|
|
- "type: security"
|
|
- "priority: critical"
|
|
body:
|
|
- type: markdown
|
|
attributes:
|
|
value: |
|
|
**Please do not disclose sensitive details publicly.** If this is a critical vulnerability,
|
|
contact the maintainers directly before filing a public issue.
|
|
- type: input
|
|
id: summary
|
|
attributes:
|
|
label: Summary
|
|
placeholder: Brief description of the vulnerability
|
|
validations:
|
|
required: true
|
|
- type: dropdown
|
|
id: severity
|
|
attributes:
|
|
label: Severity
|
|
options:
|
|
- Critical — active exploit / data exposure
|
|
- High — exploitable with moderate effort
|
|
- Medium — limited impact or requires specific conditions
|
|
- Low — informational / hardening suggestion
|
|
validations:
|
|
required: true
|
|
- type: textarea
|
|
id: description
|
|
attributes:
|
|
label: Description
|
|
description: What is the vulnerability and how can it be exploited?
|
|
validations:
|
|
required: true
|
|
- type: textarea
|
|
id: reproduction
|
|
attributes:
|
|
label: Steps to Reproduce
|
|
description: Provide enough detail for someone to verify the issue.
|
|
- type: textarea
|
|
id: remediation
|
|
attributes:
|
|
label: Suggested Remediation
|
|
description: If you have a fix in mind, describe it here.
|