Use this section to tell people about which versions of your project are currently being supported with security updates.
| Version | Supported |
|---|---|
| 1.0.1 | ❌ |
| 1.0.0 | ✅ |
| < 1.0 | ❌ |
This security policy covers the security of this repository and its code. If you discover a security vulnerability related to this repository, please report it responsibly.
-
Contact: Submit your report to https://github.com/dizaraj/bloodonation/security with details of the vulnerability. Please provide a clear and concise description of the issue, any potential impact, and a step-by-step demonstration if possible. Please do not include sensitive information in your initial email.
-
Confirmation: I will acknowledge receipt of your report within [X] business days and provide an estimated timeline for when you can expect a response.
-
Investigation: I will investigate the issue, which may involve reproducing the vulnerability or seeking further information from you.
-
Resolution: Once the vulnerability is confirmed, I will work to address it promptly and develop a fix.
-
Disclosure: I will coordinate with you regarding the public disclosure of the vulnerability. I aim to release a security advisory with information about the issue and the fix.
-
Credit: If you report a vulnerability that is successfully fixed, I will credit you for your responsible disclosure in the security advisory unless you prefer to remain anonymous.
We consider security research conducted under this policy to be:
-
Authorized concerning any applicable anti-hacking laws, and I won't initiate legal action against researchers for their findings.
-
Subject to responsible disclosure, where we work with researchers to understand and address reported vulnerabilities before public disclosure.
I appreciate your contributions to the security of this project and community.
Thank you!