crytic / blockchain-security-contacts Goto Github PK

[email protected]
https://z.cash/support/security/

Pardon me for opening an issue for this question (may be worth it to enable discussions in this repo?)

I was just wondering if this database of security contacts is still maintained? Looks like the latest commit is in Oct 2020.

I noticed Zeppelin wasn't there. Do we want a section for security firms?

Hey Dan

I'm so glad that this list is coming together so well. I'll add our address (which is currently [email protected]) soon - but of course it's a single point of failure for all security contact information for the whole industry, so eventually I'd expect it's something better stored by individual projects within their own repos (of course github is still an SPOF but I don't have any clever answer for that).

How about something like this? https://github.com/RD-Crypto-Spec/Responsible-Disclosure

bambam

As a public resource, this list might be more maintainable if managed within the ethsecurity organization by multiple parties. We could definitely add key maintainers from @trailofbits!

We are listed as an exchange and a wallet.

Hi - Could you please add a contact for https://www.coinexchange.io of [email protected]?

Thank you.

MetaMask/metamask-extension#3127

Hey there!
Please update the Chainlink security contact to [email protected]

We don't have it on our website currently, so it would probably be easiest if you email us a challenge nonce which we can post in this issue to verify it is working.

https://resources.sei.cmu.edu/asset_files/SpecialReport/2017_003_001_503340.pdf
https://www.hackerone.com/blog/Your-TLDR-Summary-of-The-CERT-Guide-to-Coordinated-Vulnerability-Disclosure

Hi - Could you please add a contact for https://dvpnet.io of [email protected]?

Thank you.

Can you please add trade.io to the exchanges list with this contact e-mail:
[email protected]
?
Cheers,
Marcin