You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: CONTRIBUTING.md
+9-2
Original file line number
Diff line number
Diff line change
@@ -11,14 +11,15 @@ don't match the goals of the project. The core maintainer team has the right of
11
11
any contribution to this project. However, we are very happy to hear community feedback on any decision
12
12
so that we can ensure we are solving the right problems in the right way.
13
13
14
+
**NOTE**: If you believe there is a security vulnerability, please see [Security Reporting](#security-reporting).
15
+
14
16
## Ways to Contribute
15
17
16
18
- File a bug or feature request as an [issue](https://github.com/PowerShell/PowerShellEditorServices/issues)
17
19
- Comment on existing issues to give your feedback on how they should be fixed/implemented
18
20
- Contribute a bug fix or feature implementation by submitting a pull request
19
21
- Contribute more unit tests for feature areas that lack good coverage
20
-
- Review the pull requests that others submit to ensure they follow [established guidelines]
21
-
(#pull-request-guidelines)
22
+
- Review the pull requests that others submit to ensure they follow [established guidelines](#follow-the-pull-request-process)
22
23
- Help others gets started with the project by contributing documentation or hanging out
23
24
in the #editors room in the [PowerShell community Slack chat](http://slack.poshcode.org).
24
25
@@ -145,3 +146,9 @@ on this check so that our project will always have good generated documentation.
145
146
rebasing your commits. Once you do your final push and we see the AppVeyor build pass, we will
146
147
merge your changes!
147
148
149
+
### Security Reporting
150
+
151
+
If you believe that there is a security vulnerability in the PowerShell extension for VSCode,
152
+
it **must** be reported to [[email protected]](https://technet.microsoft.com/security/ff852094.aspx) to allow for [Coordinated Vulnerability Disclosure](https://technet.microsoft.com/security/dn467923).
153
+
**Only** file an issue, if [email protected] has confirmed filing an issue is appropriate.
0 commit comments