Skip to content

Security: fix8mt/conjure_enum

SECURITY.md

Security Policy

Security Policy This document outlines the security policy for the conjure_enum project. Here, we detail how to report vulnerabilities and how we handle them.

Reporting a Vulnerability

If you discover a potential security vulnerability in conjure_enum, we encourage you to report it responsibly. Here's how:

  • Privately Contact Us: Please file a detailed report.
  • Include Details: In your email, please provide the following information (if applicable):
    • A clear description of the vulnerability.
    • Steps to reproduce the vulnerability (if possible).
    • The potential impact of the vulnerability. We appreciate your cooperation in keeping conjure_enum secure. We will work with you confidentially to address the vulnerability as quickly as possible.

Disclosure Process

Once a vulnerability is confirmed, we will follow these steps:

  • Acknowledge Receipt: We will acknowledge receipt of your report within 48 hours.
  • Work on a Fix: We will prioritize fixing the vulnerability and aim to release a patch within a reasonable timeframe.
  • Notify Users (if necessary): For critical vulnerabilities, we may publish a security advisory on the GitHub repository detailing the issue and mitigation steps.

Thank You

There aren’t any published security advisories