summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMarc Cornellà <marc@mcornella.com>2023-10-23 13:24:35 +0200
committerMarc Cornellà <marc@mcornella.com>2023-10-23 13:24:56 +0200
commit1868c15ec6b13c2da20375780f1e8b8f61458be5 (patch)
treef3a24b37ebcd3cbd7d6e87bcfbab8e8928e5e9a6
parent465253396df1865d3c73b1b3cff243798960ca3f (diff)
downloadzsh-1868c15ec6b13c2da20375780f1e8b8f61458be5.tar.gz
zsh-1868c15ec6b13c2da20375780f1e8b8f61458be5.tar.bz2
zsh-1868c15ec6b13c2da20375780f1e8b8f61458be5.zip
chore: remove mentions of huntr.dev
huntr.dev has pivoted to ML/AI-only vulnerability reporting, and we are now already using GitHub's private vulnerability reports.
Diffstat
-rw-r--r--README.md1
-rw-r--r--SECURITY.md5
2 files changed, 2 insertions, 4 deletions
diff --git a/README.md b/README.md
index 308d117e1..499986879 100644
--- a/README.md
+++ b/README.md
@@ -17,7 +17,6 @@ To learn more, visit [ohmyz.sh](https://ohmyz.sh), follow [@ohmyzsh](https://twi
[![Mastodon Follow](https://img.shields.io/mastodon/follow/111169632522566717?label=%40ohmyzsh&domain=https%3A%2F%2Fmstdn.social&logo=mastodon&style=flat)](https://mstdn.social/@ohmyzsh)
[![Discord server](https://img.shields.io/discord/642496866407284746)](https://discord.gg/ohmyzsh)
[![Gitpod ready](https://img.shields.io/badge/Gitpod-ready-blue?logo=gitpod)](https://gitpod.io/#https://github.com/ohmyzsh/ohmyzsh)
-[![huntr.dev](https://cdn.huntr.dev/huntr_security_badge_mono.svg)](https://huntr.dev/bounties/disclose/?utm_campaign=ohmyzsh%2Fohmyzsh&utm_medium=social&utm_source=github&target=https%3A%2F%2Fgithub.com%2Fohmyzsh%2Fohmyzsh)
<details>
<summary>Table of Contents</summary>
diff --git a/SECURITY.md b/SECURITY.md
index 7e5c8eed0..ae7458ee2 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -17,8 +17,7 @@ In the near future we will introduce versioning, so expect this section to chang
**Do not submit an issue or pull request**: this might reveal the vulnerability.
-Instead, you should email the maintainers directly at: [**security@ohmyz.sh**](mailto:security@ohmyz.sh).
+Instead, you should email the maintainers directly at: [**security@ohmyz.sh**](mailto:security@ohmyz.sh),
+or using the link to [privately report a vulnerability with GitHub](https://github.com/ohmyzsh/ohmyzsh/security/advisories/new).
We will deal with the vulnerability privately and submit a patch as soon as possible.
-
-You can also submit your vulnerability report to [huntr.dev](https://huntr.dev/bounties/disclose/?utm_campaign=ohmyzsh%2Fohmyzsh&utm_medium=social&utm_source=github&target=https%3A%2F%2Fgithub.com%2Fohmyzsh%2Fohmyzsh) and see if you can get a bounty reward.
generated by cgit v1.2.3-70-g09d2 (git 2.47.1) at 2025-02-01 17:51:21 +0000