Skip to content

Security: yaml/pyyaml

.github/SECURITY.md

PyYAML Security Policy

Reporting a Suspected Vulnerability

The PyYAML project encourages responsible disclosure of suspected security vulnerabilities. However, we do not offer bug bounties, paid disclosure, or paid fixes for discovered vulnerabilities. To report a suspected security vulnerability, please e-mail details to [email protected] without creating public issues, pull requests, or discussion. Non-security correspondence to this address will be ignored.

There aren’t any published security advisories