Use this section to tell people about which versions of your project are currently being supported with security updates.
Version | Supported |
---|---|
0.0.1 | ✅ |
We take security seriously at [Your Organization/Project Name]. If you believe you have discovered a security vulnerability, we encourage you to responsibly disclose it to us. We appreciate your efforts to help keep our software and users safe.
To report a vulnerability, please follow these steps:
-
Create a GitHub Issue:
- Go to the Issues section of this repository.
- Click on the "New Issue" button.
- Select the "Security Vulnerability" template.
- Fill in the required details, providing as much information as possible.
-
Provide Details:
- Clearly describe the vulnerability, including the steps to reproduce it.
- If applicable, include any proof-of-concept code or screenshots.
-
Contact Information:
- Optionally, include your contact information, so we can reach out to you for further clarification if needed. However, you can also choose to remain anonymous.
We acknowledge all vulnerability reports within 5. Our team will promptly review and investigate each report. We are committed to keeping you informed about the progress of the resolution.
Once a report is received, the security team will assess the vulnerability to determine its severity and impact. We will prioritize and act on valid reports promptly.
If the vulnerability is accepted:
- We will work on fixing the issue and release a patch.
- You will be credited for your responsible disclosure unless you prefer to remain anonymous.
If the vulnerability is declined:
- We will provide a clear explanation of why the report was not accepted.
- You have the right to appeal the decision, and we encourage open communication to address any concerns.
We are committed to addressing security issues in a transparent and timely manner. We appreciate your collaboration in keeping our software secure. Your responsible disclosure helps us create a safer environment for our users.
Thank you for your contribution to the security of eZpark.