You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Please do **not** report security issues publicly via GitHub issues or discussions. Security reports sent via the above channels be acknowledged within 48 hours.
15
+
16
+
## Security Disclosure Process
17
+
18
+
When reporting a security vulnerability, please include:
19
+
20
+
1.**Description** - A clear description of the vulnerability
21
+
2.**Impact** - What kind of vulnerability it is and who it impacts
22
+
3.**Reproduction** - Detailed steps to reproduce the issue
23
+
4.**Proof of Concept** - If applicable, include proof-of-concept code
24
+
5.**Suggested Fix** - If you have ideas for how to fix the issue
25
+
26
+
## Security Response Timeline
27
+
28
+
-**Initial Response**: Within 48 hours of receiving the report
29
+
-**Investigation**: We will investigate and validate the reported vulnerability
30
+
-**Fix Development**: Development of a patch or mitigation strategy
31
+
-**Release**: Coordinated disclosure and release of security update
32
+
-**Public Disclosure**: After users have had time to upgrade
0 commit comments