mirror of
https://github.com/bartvdbraak/keyweave.git
synced 2025-04-27 14:51:21 +00:00
feat: add security document
This commit is contained in:
parent
4f15b45e72
commit
ea305f2cf3
1 changed files with 31 additions and 0 deletions
31
SECURITY.md
Normal file
31
SECURITY.md
Normal file
|
|
@ -0,0 +1,31 @@
|
||||||
|
# Security Policy
|
||||||
|
|
||||||
|
## Supported Versions
|
||||||
|
|
||||||
|
Use the latest version of Keyweave for the latest security updates.
|
||||||
|
|
||||||
|
## Reporting Vulnerabilities
|
||||||
|
|
||||||
|
To report a security issue, please email [bart@vanderbraak.nl](mailto:bart@vanderbraak.nl) with a detailed description and steps to reproduce. Do not file a public issue for security vulnerabilities.
|
||||||
|
|
||||||
|
### Response Timeline
|
||||||
|
|
||||||
|
We aim to respond to security reports within 48 hours, and to patch the issue within a reasonable timeframe depending on the severity.
|
||||||
|
|
||||||
|
### Responsible Disclosure
|
||||||
|
|
||||||
|
Please allow us a reasonable timeframe to address the issue before publicly disclosing it.
|
||||||
|
|
||||||
|
### Acknowledgements
|
||||||
|
|
||||||
|
We appreciate the responsible disclosure of issues by our users and will acknowledge contributors in our release notes.
|
||||||
|
|
||||||
|
## Security Best Practices
|
||||||
|
|
||||||
|
- Ensure you are running the latest version of Keyweave.
|
||||||
|
- Follow secure password and authentication practices.
|
||||||
|
|
||||||
|
## Contact Alternatives
|
||||||
|
|
||||||
|
If you are unable to send an email, please open an issue on GitHub without disclosing details such that we can establish a alternative form of communication.
|
||||||
|
|
||||||
Loading…
Reference in a new issue