Skip to content

Commit

Permalink
Include a security policy for PDF.js
Browse files Browse the repository at this point in the history
This makes sure that security researchers can find the required
information for reporting security vulnerabilities in a standardized
manner across GitHub repositories. Please refer to
https://docs.github.com/en/code-security/getting-started/adding-a-security-policy-to-your-repository
for more information.
  • Loading branch information
timvandermeij committed Jun 23, 2024
1 parent c18a987 commit 0c90b93
Showing 1 changed file with 9 additions and 0 deletions.
9 changes: 9 additions & 0 deletions .github/SECURITY.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,9 @@
# Security policy

Mozilla takes the security of our software seriously. If you believe you have found a security vulnerability in PDF.js, please report it to us as described below.

## Reporting security vulnerabilities

**Please don't report security vulnerabilities through public GitHub issues.**

Instead, please report security vulnerabilities in [Bugzilla](https://bugzilla.mozilla.org/enter_bug.cgi?product=Firefox&component=PDF%20Viewer&groups=firefox-core-security), making sure that the checkbox in the "Security" section is checked so the required access controls are automatically configured. The Mozilla security team will process the bug as described in [Mozilla's security bugs policy](https://www.mozilla.org/en-US/about/governance/policies/security-group/bugs).

0 comments on commit 0c90b93

Please sign in to comment.