To report a security issue, please follow the steps below:
Using GitHub, file a Private Security Report with:
- A description of the issue
- Steps to reproduce the issue
- Affected versions of the cluster-api-k8spackage
- Any known mitigations for the issue
The Ubuntu Security disclosure and embargo policy contains more information about what to expect during this process and our requirements for responsible disclosure.
Thank you for contributing to the security and integrity of the cluster-api-k8s!