From: Georgi Gerganov <redacted>
Date: Tue, 16 Dec 2025 09:17:11 +0000 (+0200)
Subject: security : add collaborator guidance (#18081)
X-Git-Tag: upstream/0.0.7446~22
X-Git-Url: https://git.djapps.eu/?a=commitdiff_plain;h=5ba95754ee27433971f4f247326770019ad475c1;p=pkg%2Fggml%2Fsources%2Fllama.cpp

security : add collaborator guidance (#18081)
---

diff --git a/SECURITY.md b/SECURITY.md
index 9c86ae91..ae496f4e 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -68,3 +68,6 @@ Please disclose it as a private [security advisory](https://github.com/ggml-org/
 Please note that using AI to identify vulnerabilities and generate reports is permitted. However, you must (1) explicitly disclose how AI was used and (2) conduct a thorough manual review before submitting the report.
 
 A team of volunteers on a reasonable-effort basis maintains this project. As such, please give us at least 90 days to work on a fix before public exposure.
+
+> [!IMPORTANT]
+> For collaborators: if you are interested in helping out with reviewing privting security disclosures, please see: https://github.com/ggml-org/llama.cpp/discussions/18080