Merge pull request #43 from yassinebenaid/add-security-policy

Add security policy
yassinebenaid · Jun 28, 2024 · 876bf8f · 876bf8f
2 parents 3911276 + 2cda509
commit 876bf8f
Showing 1 changed file with 40 additions and 0 deletions.
diff --git a/.github/SECURITY.md b/.github/SECURITY.md
@@ -0,0 +1,40 @@
+# Security Policy
+
+## Supported Versions
+
+| Version | Supported          |
+| ------- | ------------------ |
+| v0.x    | :white_check_mark: |
+
+## Reporting a Vulnerability
+
+We take security vulnerabilities seriously. If you discover a security vulnerability within `godump`, please follow the guidelines below to report it securely.
+
+### How to Report
+
+1. **Email:** Send an email to [yassinebenaide3@gmail.com](mailto:yassinebenaide3@gmail.com) with the subject line "Security Vulnerability in godump".
+2. **Details:** Include as much information as possible about the vulnerability, including:
+   - A detailed description of the issue
+   - Steps to reproduce the vulnerability
+   - Potential impact and severity
+   - Any potential fixes or mitigation strategies
+
+### Response
+
+- We will acknowledge receipt of your report within 48 hours.
+- We will investigate and confirm the vulnerability within 7 days.
+- Once the vulnerability is confirmed, we will work on a fix and plan a release.
+- You will be notified of the fix and the scheduled release date.
+- We will credit you for the discovery unless you prefer to remain anonymous.
+
+## Known Issues
+
+We currently do not have any known security vulnerabilities. If you suspect any security issue, please report it immediately as per the reporting guidelines above.
+
+## Contact
+
+For any security-related queries, please contact [yassinebenaide3@gmail.com](mailto:yassinebenaide3@gmail.com).
+
+---
+
+By adhering to this security policy, you help us maintain a safe and secure library for all users. Thank you for your cooperation and support in keeping `godump` secure.