git-market/curl-curl
1
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2026-04-11 12:01:42 +08:00
Code Issues Actions 14 Packages Projects Releases Wiki Activity
ca7ef4b817
curl-curl/SECURITY.md
Daniel Stenberg ca7ef4b817
BUG-BOUNTY.md: we stop the bug-bounty end of Jan 2026 
Remove mentions of the bounty and hackerone.

Closes #20312
2026-01-26 08:26:28 +01:00

1.2 KiB
Raw Blame History

Security Policy

Read our Vulnerability Disclosure Policy.

Reporting a Vulnerability

If you have found or just suspect a security problem somewhere in curl or libcurl, report it!

We treat security issues with confidentiality until controlled and disclosed responsibly.

OpenSSF Best Practices

curl has achieved Gold status on the Open Source Security Foundation (OpenSSF) Best Practices (formerly Core Infrastructure Initiative Best Practices), reflecting its adherence to rigorous security and best practice standards. This achievement highlights curl's comprehensive documentation, secure development processes, effective change control mechanisms, and strong maintenance routines. Meeting these criteria demonstrates curl's commitment to security and reliability, ensuring the project's sustainability and trustworthiness. This underscores curl's role as a leader in open-source software practices. More information can be found on curl's OpenSSF Best Practices project page.