Security

Report a vulnerability

SECURITY.md

Reporting Security Issues

If you discover a security issue in Misskey, please report it by this form.

This will allow us to assess the risk, and make a fix available before we add a bug report to the GitHub repository.

CherryPick shares security fixes with Misskey.

Thanks for helping make Misskey safe for everyone.

Server-Side Request Forgery vulnerability in download
GHSA-6fqh-hgqv-rhwj published Sep 17, 2021 by noridev

High

Learn more about advisories related to kokonect-link/cherrypick in the GitHub Advisory Database