Hi, I've found a security issue in node-wav.
There's no SECURITY.md or GitHub private vulnerability reporting enabled here, so I can't share the specifics privately. Could you point me to a security contact? I'm happy to send a minimal proof-of-concept and a suggested fix privately.
For transparency: because the repo looked inactive and there was no private channel, I've also requested a CVE through MITRE. I'd much rather coordinate a fix with you
Thanks!
Hi, I've found a security issue in
node-wav.There's no SECURITY.md or GitHub private vulnerability reporting enabled here, so I can't share the specifics privately. Could you point me to a security contact? I'm happy to send a minimal proof-of-concept and a suggested fix privately.
For transparency: because the repo looked inactive and there was no private channel, I've also requested a CVE through MITRE. I'd much rather coordinate a fix with you
Thanks!