Skip to content

Security: nielsbasjes/codeowners

Security

.github/SECURITY.md

Security Policy

I take security very seriously, and aim to resolve issues as quickly as possible. Building secure software is a continuous process, and can always be improved. As such I welcome reports on potential security vulnerabilities, as well as suggestions around hardening the software and process.

Reporting a suspected vulnerability

It is important that suspected vulnerabilities are disclosed in a responsible way, and are not publicly disclosed until after they have been analysed and a fix is available.

To report a security vulnerability, send an email to security@basjes.nl .

Do not open a public issue, send a pull request, or disclose any information about the suspected vulnerability publicly. If you discover any publicly disclosed security vulnerabilities, please notify us immediately through security@basjes.nl .

Supported Versions

Depending on the severity of a vulnerability the issue may be fixed in the current major.minor release, or for lower severity vulnerabilities or hardening in the following major.minor release.

Automatic updates

We strongly recommend using tool like Renovate or Dependabot to get the latest versions of all your dependencies automatically as a pull request in GitHub or Gitlab.

There aren’t any published security advisories