Even if the issue you identified is out-of-scope and ineligible for our bounty program, we encourage you to open an issue upstream. Please see our our severity guidelines for more information about how severities are calculated.
|1||10000 pts joernchen Argument injection when cloning Git submodules|
|2||5000 pts @zhuowei GitHub Desktop remote code execution|
|3||2500 pts xpn XSS in GitHub Desktop|
|4||2500 pts Aaron GitHub Desktop for Windows remote code execution|