Is there a responsible security vulnerability disclosure method for concerns relating to the Snap Store (Server Component) itself?
No, the world isn’t falling apart. But I wouldn’t want to discuss it too openly because the slightest hint would reveal the problem. I’ve tried looking in Launchpad but can’t even find the Snap Store listing itself (presumably, it’s private?).
Would be happy to discuss this over a PM with someone internal if needs be. This could be assessed in about 5 minutes, it’s not the end of the world, but it does need dealing with.
Would someone be able to give me a hand here, it’s been a month and the issue (reported on Launchpad under two projects) hasn’t been acknowledged in either.
Is there a better contact address I can provide LP ID’s to, to get some eyes on it?