Skip to content

Latest commit

 

History

History
37 lines (23 loc) · 2.02 KB

SECURITY.md

File metadata and controls

37 lines (23 loc) · 2.02 KB

Security Policy

Reporting a Security Vulnerability

We take the security of our project seriously. If you discover a security vulnerability, please follow these steps to report it:

  1. Do Not Disclose Publicly: Please do not disclose the issue publicly until we have had a chance to address it.

  2. Notify Us Privately: Report the vulnerability privately to our security team by emailing us at [email protected]. If you are concerned about the sensitivity of the information you are sharing, you can use our PGP key to encrypt your communication.

  3. Provide Information: In your report, please include as much information as possible, including:

    • A detailed description of the vulnerability.
    • Steps to reproduce the vulnerability.
    • Information about the versions of the software where the vulnerability is present.
    • Any other relevant information that could help us understand and address the issue.
  4. Our Commitment: We will acknowledge your report as soon as possible and may provide you with an estimated timetable for resolution. We will keep you updated on our progress.

Responsible Disclosure Guidelines

We kindly ask you to follow these guidelines when reporting security vulnerabilities:

  • Do not exploit the vulnerability for malicious purposes.
  • Do not share or publicize the vulnerability before it has been addressed.
  • Provide sufficient information to reproduce the issue.
  • Act in good faith to avoid privacy violations, destruction of data, and interruption or degradation of our services.

PGP Key

If you need to encrypt your communication with us, you can use our PGP key. The key details are as follows:

  • Key ID: 75F1F58FCAA3B471
  • Fingerprint: 0FB0 440B 1B88 6F9D D932 3BBC 75F1 F58F CAA3 B471
  • Download Link: Download PGP Key

Thank you for helping us make our project more secure!