status-im
/
secp256k1
mirror of https://github.com/status-im/secp256k1.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
secp256k1/SECURITY.md

16 lines
714 B
Markdown
Raw Normal View History

Add SECURITY.md
2019-10-28 14:59:05 +00:00
# Security Policy
## Reporting a Vulnerability
To report security issues send an email to secp256k1-security@bitcoincore.org (not for support).
The following keys may be used to communicate sensitive information to developers:
| Name | Fingerprint |
|------|-------------|
| Pieter Wuille | 133E AC17 9436 F14A 5CF1 B794 860F EB80 4E66 9320 |
doc: Replace apoelstra's GPG key by jonasnick's GPG key I have verified the new key via other secure channels.
2021-11-08 19:28:14 +00:00
| Jonas Nick | 36C7 1A37 C9D9 88BD E825 08D9 B1A7 0E4F 8DCD 0366 |
Add SECURITY.md
2019-10-28 14:59:05 +00:00
| Tim Ruffing | 09E0 3F87 1092 E40E 106E 902B 33BC 86AB 80FF 5516 |
doc: Suggest keys.openpgp.org as keyserver in SECURITY.md This is in line with https://github.com/bitcoin/bitcoin/pull/23466/ .
2021-11-08 19:30:35 +00:00
You can import a key by running the following command with that individuals fingerprint: `gpg --keyserver hkps://keys.openpgp.org --recv-keys "<fingerprint>"` Ensure that you put quotes around fingerprints containing spaces.