Security Policy
This document outlines the security policy for the conjure_enum project. Here, we detail how to report vulnerabilities and how we handle them.
If you discover a potential security vulnerability in conjure_enum, we encourage you to report it responsibly. Here's how:
- Privately Contact Us: Please file a detailed report.
- Include Details: In your email, please provide the following information (if applicable):
- A clear description of the vulnerability.
- Steps to reproduce the vulnerability (if possible).
- The potential impact of the vulnerability.
We appreciate your cooperation in keeping
conjure_enumsecure. We will work with you confidentially to address the vulnerability as quickly as possible.
Once a vulnerability is confirmed, we will follow these steps:
- Acknowledge Receipt: We will acknowledge receipt of your report within 48 hours.
- Work on a Fix: We will prioritize fixing the vulnerability and aim to release a patch within a reasonable timeframe.
- Notify Users (if necessary): For critical vulnerabilities, we may publish a security advisory on the GitHub repository detailing the issue and mitigation steps.
Thank You