Feel welcome to report any issues you have or suggest improvements for Weblate there.
There are various templates prepared to comfortably guide you through the issue report.
Weblate’s development team is strongly committed to responsible reporting and
disclosure of security-related issues. We have adopted and follow policies that
are geared toward delivering timely security updates to Weblate.
Most normal bugs in Weblate are reported to our public GitHub issues tracker, but due to the sensitive
nature of security issues, we ask that they not be publicly reported in this
fashion.
Instead, if you believe you’ve found something in Weblate that has security
implications, please submit a description of the issue to security@weblate.org,
GitHub,
or using HackerOne.
A member of the security team will respond to you within 48 hours, and
depending on what action is taken, you may get more follow-up emails.
Nota
Sending encrypted reports
Se pretender enviar um email encriptado (opcional), utilize a chave pública de michal@weblate.org com o ID 3CB1DF1EF12CF2AC0EE5A329C27B31342B7511D. Esta chave pública está disponível nos servidores de chaves mais utilizados e em Keybase.
Dica
O Weblate depende de componentes de terceiros para muitas coisas. Caso encontre uma vulnerabilidade a afetar um desses componentes em geral, relate-o diretamente ao respectivo projeto.