Elgato_dark/siyuan
1
0
Fork 0
mirror of https://github.com/siyuan-note/siyuan synced 2026-04-21 13:37:52 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
siyuan/.github/SECURITY.md
Daniel 6808c3bd2d
📝 Update Security report 
Signed-off-by: Daniel <845765@qq.com>
2026-04-11 22:55:13 +08:00

521 B
Raw Permalink Blame History

Security report

If you find security-related vulnerabilities, please create a Security Advisories:

https://github.com/siyuan-note/siyuan/security/advisories/new

Some areas we don't consider security vulnerabilities:

  • Arbitrary file write: Writing files outside the workspace path (e.g., exporting files) is a common user need
  • Chart/Formula/ABC rendering code injection: This is a common user need, for details please refer to https://github.com/siyuan-note/siyuan/pull/6917
  • SQL injection

Thank you very much!