We take security seriously and will provide patches for security vulnerabilities in the following versions of the project:
| Version | Supported |
|---|---|
| BETA | ✅ |
| Alpha | 🔴 |
If you discover a security vulnerability in this project, we appreciate your help in disclosing it to us in a responsible manner. Please follow the steps below:
- Do not create a public issue or disclose the vulnerability in public forums.
- Send an email to security@streamlinecloud.net with the details of the vulnerability. Include the following information:
- A description of the vulnerability and its potential impact.
- Steps to reproduce the vulnerability.
- Any proof-of-concept code.
- Suggested remediation or fixes, if you have any.
- We will acknowledge receipt of your report within 48 hours and will work with you to understand and address the issue as quickly as possible.
To ensure the security of this project, we follow these practices:
- Code Reviews: All code changes are peer-reviewed to detect potential security issues early in the development process.
- Dependency Management: We regularly update dependencies to their latest versions to mitigate known vulnerabilities.
- CI/CD Pipelines: Our continuous integration and continuous deployment pipelines include security checks and tests.
- Configuration Management: We enforce secure default configurations and provide guidelines for secure deployments.
We welcome contributions from the community to enhance the security of this project. If you are interested in contributing, please follow our contributing guidelines and ensure that your changes adhere to the security practices outlined above.
Thank you for helping us keep this project secure!