cim/zitadel-oidc
5
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

initial securtiy file

Browse source
This commit is contained in:
Florian Forster 2019-11-15 15:02:12 +01:00
parent 013b1989db
commit 151df41ae0
No known key found for this signature in database
GPG key ID: B03784B4B09FB794
1 changed files with 14 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

21
SECURITY.md
View file

@ -1,19 +1,26 @@
# Security Policy # Security Policy
At @caos we are extremely grateful for security aware people that disclose vulnerabilities to us and the Open Source Community. All reports are thoroughly investigated by our engineering team.
## Supported Versions ## Supported Versions
Use this section to tell people about which versions of your project are After the initial Release the following version support will aplly
currently being supported with security updates.
| Version | Supported | | Version | Supported |
| ------- | ------------------ | | ------- | ------------------ |
| 1.x.x | :white_check_mark: (note yet available) | | 1.x.x | :white_check_mark: (note yet available) |
| 0.x.x | :x: | | 0.x.x | :x: |
## Reporting a Vulnerability ## Reporting a vulnerability
Use this section to tell people how to report a vulnerability. To file a incident, please disclose by email to security@caos.ch a list with the security details.
Tell them where to go, how often they can expect to get an update on a At the moment GPG encryption is no yet supported, however you may sign your message at will.
reported vulnerability, what to expect if the vulnerability is accepted or
declined, etc. ### When should I report a vulnerability?
### When should I NOT report a vulnerability?
## Security Vulnerability Response
## Public Disclosure Timing