New Lifter Improvement: Submit Security Alerts

You may have noticed at the end of 2018 that we added a quicker way to tell subscribers about security vulnerabilities in your packages. You can access this new feature by clicking the white button that says “Submit new security alerts” on your dashboard. This will drop you to a page that you can search for your lifted package and choose any affected versions. Once you have selected at least one version you can fill out the security vulnerability ID. If we have seen this vulnerability before, the information in the form below will be populated. If not, please fill out any remaining information such as a description and a URL pointing to more information. When you are finished with this, submit the form and you are good to go! This information will help subscribers by letting them know first if they have any security vulnerabilities they need to fix with their projects.

2 Likes