On Sat, Aug 28, 2021 at 03:56:51PM +0200, Rutger Hertogh wrote: > Hi all, > > How can I report a possible security threat?
The answer depends on whether it's believed to be an issue with the protocol itself vs a specific implementation or implementations of it. The IETF guidance on reporting protocol vunlerabilities (the former category) is available at https://www.ietf.org/standards/rfcs/vulnerabilities/ -Ben _______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
