Ensuring the security of our project is a top priority. This document outlines the process for reporting vulnerabilities and how we handle such reports. We appreciate your cooperation in maintaining the security and integrity of the Plasma Arc Project.
We take the security of our project seriously. If you discover a security vulnerability, we appreciate your help in disclosing it responsibly.
- Email: Send an email to our security team at [email protected] with the subject line Security Vulnerability Report.
- Include Details: Provide as much detail as possible about the vulnerability. Include the steps to reproduce the issue, any potential impact, and your contact information.
- Confidentiality: We will handle your report with the highest level of confidentiality and will not share the details outside of our security team until the issue is resolved.
- Acknowledgment: We will acknowledge receipt of your vulnerability report within 48 hours.
- Evaluation: Our security team will evaluate the report and determine the severity of the issue.
- Resolution: We will work to resolve the vulnerability as quickly as possible and will provide you with updates throughout the process.
- Disclosure: Once the vulnerability is resolved, we will disclose the issue and credit the reporter if they desire.
This policy applies to any vulnerabilities identified in the project repository, including:
- The core application code
- Dependencies and libraries
- Documentation and configurations
We thank you for your efforts to make the Plasma Arc Project secure for everyone.