OpenSSF

On Categorizing Open Source Software Security Vulnerability Reporting Mechanisms on GitHub
Open-source projects are essential to software development, but publicly disclosing vulnerabilities without fixes increases the risk of …