From 04bbe790687b3dc6c5cdee0a3470dd42cb73d32b Mon Sep 17 00:00:00 2001 From: Guillaume Fieni Date: Thu, 1 Feb 2024 19:16:46 +0100 Subject: [PATCH] docs: Add SECURITY.md --- SECURITY.md | 13 +++++++++++++ 1 file changed, 13 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 00000000..ae59a4ac --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,13 @@ +# Security Policy + +## Reporting Security Issues + +The PowerAPI team and community take security bugs seriously. We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions. + +To report a security issue, please use the GitHub Security Advisory ["Report a Vulnerability"](https://github.com/powerapi-ng/powerapi/security/advisories/new) tab. +**Please do not report security vulnerabilities through public GitHub issues.** + +The PowerAPI team will send a response indicating the next steps in handling your report. After the initial reply to your report, the security team will keep you informed of the progress towards a fix and full announcement, and may ask for additional information or guidance. + +Report security bugs in third-party modules to the person or team maintaining the module. +If your report is about a security issue in a formula, please follow the Security Policy in its own repository.