Creating a maintainer security advisory

You can create a draft advisory to privately discuss and fix a security vulnerability in your open source project.

Note: Maintainer security advisories are currently in public beta and subject to change.

Anyone with admin permissions to a repository can create a security advisory.

  1. On GitHub, navigate to the main page of the repository.

  2. Under your repository name, click Security.

    Security tab

  3. In the left sidebar, click Advisories.

    Advisories tab

  4. Click Open draft advisory.

    Open draft advisory button

  5. Type a title for your security advisory.

    Title field

  6. Type a description of the security vulnerability.

    "Leave a comment" field

  7. Click Create draft advisory.

Next, you can:

Ask a human

Can't find what you're looking for?

Contact us