If you think you have discovered a security issue in any of the Hyperledger projects, we'd love to hear from you. We will take all security bugs seriously and if confirmed upon investigation we will patch it within a reasonable amount of time and release a public security bulletin discussing the impact and credit the discoverer.
There are two email addresses where Hyperledger Besu accepts security bugs. The first, security "dash" besu at lists dot hyperledger dot org is limited to a subset of Hyperledger Besu maintainers and Hyperledger staff. For highly sensitive bugs this is a preferred address. The second email address security at hyperledger dot org is limited to a subset of maintainers and staff of all Hyperledger projects, and may be viewed by maintainers outside of Hyperledger Besu. When sending information to either of these emails please be sure to include a description of the flaw and any related information (e.g. reproduction steps, version, known active use).
The process by which the Hyperledger Security Team handles security bugs is documented further in our Defect Response page on our wiki.
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。