To receive fixes for security vulnerabilities it is required to always upgrade to the latest version of Cryptkhen. See NPM or Yarn for the latest release
To report a security vulnerability:
You can report a security vulnerability either through email. If you are uncertain what you have discovered is a vulnerability or you believe it is a critical issue please report using email.
To report through email send an email to [email protected] with Subject 'REPORT VULNERABILITY'.
If you have a patch for the issue please use git format-patch
and attach to the email or issue.
Please do not open a pull request on GitHub as that may disclose sensitive details around the vulnerability.