2016-10-29 14:16:06 -04:00
|
|
|
---
|
|
|
|
|
page_title: "Security"
|
2017-03-25 18:13:52 -04:00
|
|
|
layout: inner
|
2016-10-29 14:16:06 -04:00
|
|
|
description: |-
|
2017-03-25 18:13:52 -04:00
|
|
|
Packer takes security very seriously. Please responsibly disclose any
|
|
|
|
|
security vulnerabilities found and we'll handle it quickly.
|
2016-10-29 14:16:06 -04:00
|
|
|
---
|
|
|
|
|
|
|
|
|
|
<h1>Packer Security</h1>
|
|
|
|
|
|
|
|
|
|
<p>
|
|
|
|
|
We understand that many users place a high level of trust in HashiCorp
|
|
|
|
|
and the tools we build. We apply best practices and focus on security to
|
|
|
|
|
make sure we can maintain the trust of the community.
|
|
|
|
|
</p>
|
|
|
|
|
|
|
|
|
|
<p>
|
2017-03-25 18:13:52 -04:00
|
|
|
We deeply appreciate any effort to disclose vulnerabilities responsibly.
|
|
|
|
|
</p>
|
2016-10-29 14:16:06 -04:00
|
|
|
|
|
|
|
|
<p>
|
|
|
|
|
If you would like to report a vulnerability, please see the <a
|
|
|
|
|
href="https://www.hashicorp.com/security.html">HashiCorp security
|
|
|
|
|
page</a>, which has the proper email to communicate with as well as our
|
|
|
|
|
PGP key. Please <strong>do not create an GitHub issue for security
|
|
|
|
|
concerns</strong>.
|
|
|
|
|
</p>
|
|
|
|
|
|
|
|
|
|
<p>
|
|
|
|
|
If you are not reporting a security sensitive vulnerability, please open
|
2017-06-25 22:34:23 -04:00
|
|
|
an issue on the <a href="https://github.com/hashicorp/packer">Packer
|
2016-10-29 14:16:06 -04:00
|
|
|
GitHub repository</a>.
|
|
|
|
|
</p>
|
