Andreas/siyuan
1
0
Fork 0
mirror of https://github.com/siyuan-note/siyuan.git synced 2026-03-04 11:50:15 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

📝 Update security report

Browse source 
Signed-off-by: Daniel <845765@qq.com>
This commit is contained in:
Daniel 2026-03-02 22:41:37 +08:00
parent 6071ced2af
commit ec4424265a
No known key found for this signature in database
GPG key ID: 86211BA83DF03017
1 changed files with 7 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

10
.github/SECURITY.md vendored
View file

@ -1,8 +1,12 @@
# Security report
If you find security-related vulnerabilities, please inform us in any of the following ways:
If you find security-related vulnerabilities, please create a Security Advisories:
* Open Issue directly (please hide sensitive information such as site and actual project)
* Send an email to 845765@qq.com
https://github.com/siyuan-note/siyuan/security/advisories/new
Some areas we don't consider security vulnerabilities:
* Arbitrary file write: Writing files outside the workspace path (e.g., exporting files) is a common user need
* SQL injection
Thank you very much!