Skip to content

Latest commit

 

History

History
47 lines (31 loc) · 1.86 KB

SECURITY.md

File metadata and controls

47 lines (31 loc) · 1.86 KB

Security Policy

Reporting Security Vulnerabilities

Thank you for your interest in helping keep this repository and its users secure. I take security concerns seriously and appreciate responsible disclosure of potential vulnerabilities.

How to Report a Vulnerability

If you discover a security vulnerability within any of the scripts in this repository, please send a detailed report to:

Mike [at] MikeCrowley [dot] us

Please provide:

  1. A clear description of the vulnerability
  2. Steps to reproduce the issue
  3. Potential impact of the vulnerability
  4. Any suggested fixes or mitigations (if applicable)

What to Expect

After receiving your report, I will:

  • Acknowledge receipt of your vulnerability report within 72 hours
  • Provide an initial assessment of the report and expected time for resolution
  • Keep you informed about the progress of addressing the vulnerability
  • Credit you in the repo (unless you prefer to remain anonymous)

Scope

This security policy applies to all scripts and code contained within this repository. For vulnerabilities in third-party dependencies, please report them directly to the respective project maintainers.

Responsible Disclosure

I kindly request that you:

  • Allow reasonable time for me to address the vulnerability before public disclosure
  • Avoid accessing or modifying other users' data while investigating potential vulnerabilities
  • Not perform actions that could impact the availability of the repository or its resources

Best Practices for Users

When using scripts from this repository:

  • Always review the code before executing it in your environment
  • Keep all dependencies updated to their latest secure versions
  • Use the latest released version of scripts when possible
  • Report any suspicious behavior or potential security issues promptly

Thank you for helping maintain the security of this project.