The publicly accessible code hosting service GitHub, which is owned by Microsoft, has announced the launch of a direct channel for security researchers to report vulnerabilities.
With the new private vulnerability reporting feature, repository administrators can request that security researchers notify them of any vulnerabilities found in their code. Researchers frequently report issues publicly for repositories that lack specific instructions on how to contact the maintainers for reporting vulnerabilities.
This approach might lead to inadequate disclosure of vulnerability information, regardless of whether the researcher reports the vulnerability via social media or by generating a public issue.
Also Read: Strategies to Choose the Right Cybersecurity Risk Framework
Read More: GitHub Introduces Private Vulnerability Reporting for Public Repositories
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
