docs(security): create security policy
This commit is contained in:
parent
25da1a69f6
commit
13f8e5dfbe
1 changed files with 18 additions and 0 deletions
18
SECURITY.md
Normal file
18
SECURITY.md
Normal file
|
@ -0,0 +1,18 @@
|
||||||
|
# Security Policy
|
||||||
|
|
||||||
|
## Supported Versions
|
||||||
|
|
||||||
|
As this is a web application, only the latest deployed version will be monitored and updated for security vulnerabilities.
|
||||||
|
|
||||||
|
| Version | Supported |
|
||||||
|
| -------- | ------------------ |
|
||||||
|
| Latest | :white_check_mark: |
|
||||||
|
| Previous | :x: |
|
||||||
|
|
||||||
|
## Reporting a Vulnerability
|
||||||
|
|
||||||
|
In the interest of open disclosure, you are welcome to write a research paper on any vulnerabilities you discover.
|
||||||
|
In fact, we encourage you to exploit them if possible to demonstrate their potential impact.
|
||||||
|
We are not particularly concerned with DevSecOps, so these "security vulnerabilities" are not a primary concern for us.
|
||||||
|
Once you are done hacking our entire system, politely report the vulnerability securely via GitHub's private reporting system (recommended) or file a public issue and tell the world about it.
|
||||||
|
We really don't care.
|
Loading…
Reference in a new issue