I'm so glad that this list is coming together so well. I'll add our address (which is currently [email protected]) soon - but of course it's a single point of failure for all security contact information for the whole industry, so eventually I'd expect it's something better stored by individual projects within their own repos (of course github is still an SPOF but I don't have any clever answer for that).
As a public resource, this list might be more maintainable if managed within the ethsecurity organization by multiple parties. We could definitely add key maintainers from @trailofbits!
Hey there!
Please update the Chainlink security contact to [email protected]
We don't have it on our website currently, so it would probably be easiest if you email us a challenge nonce which we can post in this issue to verify it is working.