mirror of
https://github.com/nuxt/nuxt.git
synced 2024-11-11 08:33:53 +00:00
11 lines
899 B
Markdown
11 lines
899 B
Markdown
# Security Policy
|
|
|
|
## Reporting a Vulnerability
|
|
|
|
To report a vulnerability, please [privately report it via the Security tab](https://github.com/nuxt/nuxt/security/advisories/new) on the correct GitHub repository (see [documentation](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/privately-reporting-a-security-vulnerability#privately-reporting-a-security-vulnerability)). If that is impossible, feel free to send an email to **security@nuxtjs.org** instead.
|
|
|
|
All security vulnerabilities will be promptly verified and addressed.
|
|
|
|
While the discovery of new vulnerabilities is rare, we also recommend always using the latest versions of Nuxt and other dependencies by maintaining lock files (`yarn.lock`, `package-lock.json` and `pnpm-lock.yaml`) in order to ensure your application remains as secure as possible.
|
|
|