arno/trezor-firmware
1
0
Fork 0
mirror of https://github.com/trezor/trezor-firmware.git synced 2025-04-20 09:09:02 +00:00
Code Issues Releases Wiki Activity

chore(docs): update SECURITY.md

Browse Source
This commit is contained in:
Tomas Susanka 2025-03-26 09:12:28 +01:00
parent ad8c34e825
commit 0f3e89e654
1 changed files with 2 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
SECURITY.md
View File

@ -2,15 +2,6 @@
## Reporting a Vulnerability
To report security issues send an email to security@satoshilabs.com (this is not a support email!).
Please report suspected security vulnerabilities in private to security@satoshilabs.com. Our guidance on this topic can be found at our [website](https://trezor.io/support/a/how-to-report-a-security-issue) and list of past issues at [GitHub](https://github.com/orgs/trezor/discussions).
The following keys may be used to communicate sensitive information to developers:
| Name | Fingerprint |
|-----------------|--------------------------------------------|
| Pavol Rusnak | `86E6792FC27BFD478860C11091F3B339B9A02A3D` |
| Marek Palatinus | `71B5A80A63FE12B0D74DABBFE4A883364AAF6E16` |
You can import a key by running the following command with that individuals fingerprint: `gpg --recv-keys <fingerprint>`.
More info about our Responsible Disclosure program is available from https://trezor.io/security/
Thank you for your cooperation in making Trezor more secure.