Regarding fuzzing integration with OSS-Fuzz

[inferno-chromium]

Hello Ultrajson maintainers,

We have integrated Ultrajson [https://github.com/google/oss-fuzz/tree/master/projects/ujson] as a first example of our python fuzzing support in our OSS-Fuzz platform [https://google.github.io/oss-fuzz/getting-started/new-project-guide/python-lang/]. OSS-Fuzz is a free service from Google and helps to find stability and security issues in various projects (350+).

In order to receive bugs automatically, we need developer contact in our project.yaml file - https://github.com/google/oss-fuzz/blob/master/projects/ujson/project.yaml#L4 . Can you please provide that.

Cheers,
Abhishek Arya

[bwoodsend]

Apologies for the *ahem* delayed response.

Does it have to be an email address? I'm prone to missing emails (I wrote something in an academic journal a few years ago and my poor gmail's spam filter has been sent into a state of zealous overdrive ever since by all the spam I still receive) and I don't think that the rest of the team are particularly keen on email either.

Ideally, issues would be reported to https://github.com/ultrajson/ultrajson/security/advisories/new where the maintainers cam all see them and get GitHub notifications for. Is that possible?