If you discover a vulnerability in our project, please report it to us at [email protected]. We appreciate your help in keeping our project secure.
Response Expectations:
- We will respond to your report within 3 business days to acknowledge receipt and let you know we're working on it.
- We will provide regular updates on the status of the vulnerability every 7 days.
- If the vulnerability is accepted, we will work to fix it as soon as possible and provide a timeline for the fix.
- If the vulnerability is declined, we will explain why it does not qualify as a security vulnerability.
What to Expect:
- We will keep your report confidential and not disclose your identity without your permission.
- We will not take legal action against you if you act in good faith and follow our guidelines.
- We will provide credit to you in our security acknowledgments if you wish.
Remember, your help is crucial in keeping our project secure. Thank you for contributing to our security efforts.