1# Reporting Security Issues 2 3Please report security vulnerabilities on GitHub at: 4<https://github.com/php/php-src/security/advisories/new> 5 6If for some reason you cannot use the form at GitHub, or you need to talk to 7somebody about a PHP security issue that might not be a bug report, please write 8to <security@php.net>. 9 10Vulnerability reports remain private until published. When published, you will 11be credited as a contributor, and your contribution will reflect the MITRE 12Credit System. 13 14# Vulnerability Policy 15 16Our full policy is described at 17https://github.com/php/policies/blob/main/security-classification.rst 18
