Delete .github/SECURITY.md
Signed-off-by: Xikaro <os.valerievich@yandex.ru>
This commit is contained in:
Xikaro
GitHub
parent
7655b0a5ce
commit
b422e4e82a
1 changed files with 0 additions and 42 deletions
42
.github/SECURITY.md
vendored
42
.github/SECURITY.md
vendored
|
|
@ -1,42 +0,0 @@
|
||||||
# Security Policy
|
|
||||||
|
|
||||||
## Scope
|
|
||||||
|
|
||||||
Keeping users safe and secure is a top priority for us.We welcome the contribution of external security researchers.
|
|
||||||
|
|
||||||
If you believe you’ve found a security or vulnerability issue in the repo we encourage you to notify us.
|
|
||||||
|
|
||||||
There are no hard and fast rules to determine if a bug is worth reporting as a security issue or a “regular” issue.
|
|
||||||
When in doubt, please do send us a report.
|
|
||||||
|
|
||||||
## How to submit a report
|
|
||||||
|
|
||||||
Security issues can be reported by sending an [email to us][contact].
|
|
||||||
|
|
||||||
The team will acknowledge your email within 48 hours. You will receive a more detailed response within 96 hours.
|
|
||||||
|
|
||||||
We will create a maintainer security advisory on GitHub to discuss internally, and when needed, invite you to the
|
|
||||||
advisory.
|
|
||||||
|
|
||||||
## Purpose
|
|
||||||
|
|
||||||
- Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our
|
|
||||||
services
|
|
||||||
- Only interact with accounts you own or with explicit permission of the account holder. If you do encounter Personally
|
|
||||||
Identifiable Information (PII) contact us immediately,
|
|
||||||
do not proceed with access, and immediately purge any local information
|
|
||||||
- Provide us with a reasonable amount of time to resolve vulnerabilities prior to any disclosure to the public or a
|
|
||||||
third-party
|
|
||||||
- We will consider activities conducted consistent with this policy to constitute “authorized” conduct and will not
|
|
||||||
pursue civil action or initiate a complaint to law enforcement.
|
|
||||||
We will help to the extent we can if legal action is initiated by a third party against you
|
|
||||||
|
|
||||||
Please submit a report to us before engaging in conduct that may be inconsistent with or unaddressed by this policy.
|
|
||||||
|
|
||||||
## Preferences
|
|
||||||
|
|
||||||
- Please provide detailed reports with reproducible steps and a clearly defined impact
|
|
||||||
- Submit one vulnerability per report
|
|
||||||
- Social engineering (such as phishing, vishing, smishing) is prohibited
|
|
||||||
|
|
||||||
[contact]: mailto:admin@terrafirmagreg.team
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue