This document outlines the security policy for the Datadog HTTPD module and what to do if you discover a security vulnerability in the project. Most notably, please do not share the details in a public forum (such as in a discussion, issue, or pull request) but instead reach out to us with the details. This gives us an opportunity to release a fix for others to benefit from by the time details are made public.
We accept vulnerability submissions for any currently maintained versions of HTTPD.
If you discover a vulnerability please submit details to the following email address: