Skip to content

Security: havelessbemore/nacci

SECURITY.md

Security Policy

We strive to keep Nacci secure for everyone. We welcome your help in disclosing vulnerabilities responsibly.

Supported Versions

Version Supported
1.0.x
< 1.0

Reporting a Vulnerability

If you have discovered a security vulnerability, please report it privately to us as follows:

  1. Go to the project's Security tab on GitHub.
  2. Click on "Report a vulnerability".

Please include as much information as possible with your report, such as:

  • A description of the vulnerability
  • Steps to reproduce or proof-of-concept
  • Potential impacts of the vulnerability

What to Expect

We appreciate your efforts to responsibly disclose your findings and will respond in kind to acknowledge, investigate and fix your report in a timely and transparent manner.

After the submission:

  1. Your submission will be reviewed and validated.
  2. We will contact you to acknowledge receipt of your report.
  3. You will receive updates as we investigate and work on resolving the issue.
  4. Once the issue is resolved, an update will be released, and you will be credited for your contribution (unless you prefer to remain anonymous).

There aren’t any published security advisories