Yes! Just mention it in your report and I will exclude your name from the Hall of Fame page (or credit you under a pseudonym, whichever you prefer).
Security Policy
Scope
This security policy only applies to my personal projects on GitHub.
This policy does not apply to this website or my blog. My website and blog are hosted by GitHub Pages. Their security policies apply for my website and blog respectively, should they have one.
Rewards
As I am currently a student and most of my projects are free and open-source, I am unable to offer a monetary reward at this time. This is subject to change in the future. I will update this section if I ever start offering paid projects or products.
FAQ
Can I report a vulnerability anonymously?
How long should I wait before publicizing the report?
At least 90 days, as per reasonable disclosure standards in many security policies. Of course, I may let you know that it's okay to release earlier if the problem is patched sooner. Please do not release before then, whichever is later.
Please note that this page is still a work-in-progress. Information here can change without notice.