Glance

how to feedback our problems and corresponding solutions

Asked by yuhsiang lin

Hi, we are a team of iii (Institute For Information Industry) company which comes from Taiwan. We use checkMarx tool to scan the server of this website (https://opendev.org/openstack/glance/src/tag/mitaka-eol). As a result, we find some threats from it but only correct 3 high-risk threats. We have improved sourcecode, and we want to feedback to you. Please provide us some ways to feedback the above mentioned things to you.

Question information

Language:
English Edit question
Status:
Answered
For:
Glance Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:
Revision history for this message
Brian Rosmaita (brian-rosmaita) said : 		#1

Thank you for your interest in OpenStack and Glance.

The 'mitaka-eol' tag marks a branch that is End Of Life and no longer supported. Please re-scan against a current stable branch to determine whether the vulnerability still exists.

This page contains all the information you'll need about contributing your fix to us:

https://docs.openstack.org/glance/latest/contributor/contributing.html

When you file the bug, make sure that you mark it as "Private Security". It's the "This bug contains information that is:" field just above the "Submit Bug Report" button.

Thanks!

Revision history for this message
adimm (adim3) said : 		#2

Thank you for your feedback. To share your improvements, please submit a detailed bug report on the OpenStack bug tracker or propose a patch via Gerrit. For urgent security issues, contact the OpenStack Security Team at <email address hidden>. We appreciate your efforts in improving the security of the codebase.
Regards
https://force-v.co/

Can you help with this problem?

Provide an answer of your own, or ask yuhsiang lin for more information if necessary.

To post a message you must log in.