1<!-- 2Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. 3 4SPDX-License-Identifier: curl 5--> 6 7# Security Policy 8 9Read our [Vulnerability Disclosure Policy](docs/VULN-DISCLOSURE-POLICY.md). 10 11## Reporting a Vulnerability 12 13If you have found or just suspect a security problem somewhere in curl or 14libcurl, report it on [HackerOne](https://hackerone.com/curl). 15 16We treat security issues with confidentiality until controlled and disclosed responsibly. 17