How do I report a security vulnerability?

The Portainer team takes the security of our products seriously. If you believe you have discovered a security vulnerability in any Portainer-owned repository, please report it responsibly.

Please do not report security vulnerabilities through public channels, including standard GitHub issues.

Instead, report vulnerabilities using one of the following methods:

• Email the Portainer team at [email protected]
• ​Submit a private vulnerability report through the relevant Portainer repository on GitHub

These channels allow the team to review and address the issue as quickly as possible while minimizing the risk of public exposure before a fix is available.