remote code execution vulnerability through dependency confusion #87
Description
Hello, Previously I reported a remote code execution vulnerability through dependency confusion to a company, but they rejected my finding, stating that it is related to PyAPNs, an open-source project. As they are not interested in the vulnerability, I would like to report it to the PyAPNs team. Can you provide guidance on how to do so, or would you be interested in taking a look at the vulnerability?