From 9cacb97b97a662365f4e01a6fecd3c0bf4414e4e Mon Sep 17 00:00:00 2001 From: Greg Chadwick Date: Tue, 16 Jul 2024 09:59:11 +0100 Subject: [PATCH] Add SECURITY.md --- SECURITY.md | 8 ++++++++ 1 file changed, 8 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 000000000..ab79a39c2 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,8 @@ +# Reporting Security Issues + +The lowRISC team and Ibex community (including the OpenTitan partnership) take security issues seriously. + +We appreciate all efforts to find security vulnerabilities in Ibex and ask that responsible disclosure is practiced should you discover a potential vulnerability. + +As Ibex and in particular its secure configuration was developed as part of [OpenTitan](https://www.github.com/lowrisc/opentitan) contact [security@opentitan.org](mailto:security@opentitan.org) to report any security issues and do not open a public issue. +[security@opentitan.org](mailto:security@opentitan.org) will advise on the coordinated vulnerability disclosure (CVD) procedure.