Skip to content

Latest commit

 

History

History
40 lines (25 loc) · 1.81 KB

SECURITY.md

File metadata and controls

40 lines (25 loc) · 1.81 KB

Security Policy

Supported Versions

This section outlines the versions of our project that are currently supported with security updates.

Version Supported
1.0.x

Reporting a Vulnerability

If you believe you have found a security vulnerability in our project, we encourage you to report it to us. Your report will help us improve the security of our project and ensure the trust of our users.

How to Report a Vulnerability

  1. Identify the Vulnerability: Clearly describe the vulnerability, including how it can be exploited and any potential impact.
  2. Provide Detailed Information: Include as much detail as possible, such as the version of the project affected, steps to reproduce the vulnerability, and any relevant code snippets or screenshots.
  3. Contact Us: Send your report to my email. Please include "Security Vulnerability Report" in the subject line.

What to Expect

  • Acknowledgment: Upon receiving your report, we will acknowledge receipt within 2�5 business days.
  • Investigation: Our security team will investigate the vulnerability and determine its validity.
  • Update: If the vulnerability is accepted, we will work on a fix and provide an update on the timeline for a security update.
  • Communication: We will communicate with you regarding the status of the vulnerability and any necessary actions.

Vulnerability Acceptance Criteria

  • The vulnerability must be reproducible.
  • The vulnerability must be exploitable.
  • The vulnerability must not be a false positive.

Vulnerability Decline Criteria

  • The vulnerability is outside the scope of our project.

Thank you for helping us maintain the security of our project. Your contribution is invaluable in keeping our users safe.