This document outlines how to report security procedures and how security vulnerabilities are handled.
If you discover a security vulnerability within this project, please send an email to help@circuitparts.in. All security vulnerabilities will be promptly addressed.
Please do not create a public github issue.
When a security issue is reported, we will take the following actions:
- Confirm the problem and determine the affected versions.
- Audit code to find any potential similar problems.
- Prepare fixes for all releases still under maintenance. These fixes will be released as fast as possible.
If you have suggestions on how this process could be improved please submit a pull request.