Skip to content

docs: add suspicious-content reporting guidance to SECURITY.md#1

Open
D3vaLP36 wants to merge 1 commit intomainfrom
codex/add-firebase-auth-and-firestore-integration
Open

docs: add suspicious-content reporting guidance to SECURITY.md#1
D3vaLP36 wants to merge 1 commit intomainfrom
codex/add-firebase-auth-and-firestore-integration

Conversation

@D3vaLP36
Copy link
Copy Markdown
Owner

@D3vaLP36 D3vaLP36 commented Apr 14, 2026

Motivation

  • Provide explicit guidance for reporting suspicious non-code abuse (scams, impersonation, social-engineering prompts, or misleading branding) so these reports can be triaged effectively and users remain safe.

Description

  • Appended a new Reporting Suspected Malicious Content (Scams, Impersonation, or Abuse) section to SECURITY.md that lists the context reporters should include (where it appeared, exact text/URLs, attached media, and why it appears malicious) and adds a safety note to avoid executing untrusted code or following payment/credential instructions.

Testing

  • Reviewed the updated SECURITY.md to confirm the new section renders correctly and that the change is limited to SECURITY.md with no automated test failures observed.

Codex Task

@qodo-code-review
Copy link
Copy Markdown

qodo-code-review Bot commented Apr 14, 2026

Review Summary by Qodo

Add suspicious content reporting guidance to SECURITY.md

📝 Documentation

Grey Divider

Walkthroughs

Description 
• Adds guidance for reporting suspicious malicious content
• Specifies required information for abuse reports
• Includes safety warnings against executing untrusted code
Diagram 
flowchart LR
  A["SECURITY.md"] -- "adds new section" --> B["Reporting Suspected Malicious Content"]
  B -- "includes" --> C["Report Requirements"]
  B -- "includes" --> D["Safety Warnings"]
  C -- "location, text, media, reason" --> E["security@projectdiscovery.io"]
  D -- "avoid code execution & credentials" --> E
Loading

Grey Divider

File Changes

1. SECURITY.md 📝 Documentation +11/-0

Add malicious content reporting guidance section

• Appends new section for reporting suspicious malicious content
• Lists required information for abuse reports (location, text, URLs, media, reason)
• Adds safety warnings against executing untrusted code or following payment instructions
• Directs reporters to security@projectdiscovery.io email address

SECURITY.md

Grey Divider

Qodo Logo

@qodo-code-review
Copy link
Copy Markdown

qodo-code-review Bot commented Apr 14, 2026
edited
Loading

Code Review by Qodo

🐞 Bugs (0) 📘 Rule violations (0) 📎 Requirement gaps (0)

Grey Divider

Great, no issues found!

Qodo reviewed your code and found no material issues that require review

Grey Divider

ⓘ The new review experience is currently in Beta. Learn more

Grey Divider

Qodo Logo

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

codex

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@D3vaLP36