You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Mozilla takes the security of our software seriously. If you believe you have found a security
4
+
vulnerability in the [source-map](https://github.com/mozilla/source-map) library, please report it to us as described below.
5
+
6
+
## Report a security bug!
7
+
8
+
Please report source-map security vulnerabilities at [bugzilla.mozilla.org](https://bugzilla.mozilla.org/enter_bug.cgi?format=__default__&product=DevTools&short_desc=[source-map%20security]) and make sure that the
9
+
checkbox in the "Security" section is checked so the required access controls are automatically configured:
10
+
11
+

12
+
13
+
## Bounty program?
14
+
15
+
There is not a bug bounty program for this library ([source-map](https://github.com/mozilla/source-map)) as a whole, but security
16
+
vulnerabilities may be eligible for a bug bounty if they can be exploited as used by Firefox.
17
+
Please see the [Firefox bug bounty program](https://www.mozilla.org/en-US/security/client-bug-bounty/) for more details and how to submit bugs to that program.
18
+
19
+
## I have a question! Who can help?
20
+
21
+
Questions regarding security bugs or our bounty programs can be directed to security@mozilla.com.
22
+
An encryption key for sending [GPG encrypted mails](https://www.mozilla.org/en-US/security/#pgpkey) is also available.
23
+
24
+
## Where can I find security advisories?
25
+
26
+
We publish security advisories for all released versions of the library as part of the release notes.
27
+
28
+
General information about security at Mozilla is available at [https://www.mozilla.org/en-US/security/](https://www.mozilla.org/en-US/security/).
0 commit comments