Skip to content

Security: YeonSphere/YeonSphere.github.io

Security

.github/SECURITY.md

Security Policy

Supported Versions

We maintain security updates for the following versions:

Version Supported
main

Reporting a Vulnerability

If you discover a security vulnerability within YeonSphere projects, please follow these steps:

  1. DO NOT disclose the vulnerability publicly
  2. Send a detailed report to daedaevibin@naver.com
  3. Include:
    • Description of the vulnerability
    • Steps to reproduce
    • Potential impact
    • Suggested fix (if any)

Response Timeline

  • Initial Response: Within 24 hours
  • Status Update: Within 72 hours
  • Resolution Timeline: Within 30 days

Security Measures

  • Regular security audits
  • Automated vulnerability scanning
  • Dependency updates via Dependabot
  • Code scanning with CodeQL
  • OWASP ZAP scanning

Best Practices

We follow these security best practices:

  • Regular dependency updates
  • Code review requirements
  • Automated security testing
  • Content Security Policy implementation
  • HTTPS enforcement
  • Regular backups

Contact

Security Contact: daedaevibin@naver.com GitHub: @daedaevibin

There aren’t any published security advisories