mirror of
https://github.com/Studio-42/elFinder.git
synced 2026-06-19 07:37:19 +00:00
Create SECURITY.md
This commit is contained in:
Naoki Sawada
@@ -0,0 +1,36 @@
|
||||
# Security Policy
|
||||
|
||||
## Reporting a Vulnerability
|
||||
|
||||
If you discover a security vulnerability in this project, please **do not report it via public GitHub issues**.
|
||||
|
||||
Instead, use GitHub's private vulnerability reporting feature:
|
||||
|
||||
1. Go to the **Security** tab of this repository
|
||||
2. Click **"Report a vulnerability"**
|
||||
3. Submit the details privately
|
||||
|
||||
This allows us to investigate and fix the issue before public disclosure.
|
||||
|
||||
## What to Include
|
||||
|
||||
Please include as much information as possible:
|
||||
|
||||
- Description of the vulnerability
|
||||
- Steps to reproduce
|
||||
- Affected versions
|
||||
- Potential impact
|
||||
- Proof of concept (if available)
|
||||
|
||||
## Response Policy
|
||||
|
||||
- We will acknowledge your report as soon as possible
|
||||
- We will investigate and work on a fix
|
||||
- We may ask for additional information if needed
|
||||
- We will coordinate responsible disclosure
|
||||
|
||||
## Disclosure
|
||||
|
||||
Please do not publicly disclose the vulnerability until we have addressed it.
|
||||
|
||||
Thank you for helping keep this project secure.
|
||||
Reference in New Issue
Block a user