Skip to content

Commit

Permalink
Create SECURITY.md
Browse files Browse the repository at this point in the history
Signed-off-by: Summer Henderson <[email protected]>
  • Loading branch information
whizbangpop authored Oct 19, 2022
1 parent 78fe17e commit 66fa755
Showing 1 changed file with 21 additions and 0 deletions.
21 changes: 21 additions & 0 deletions SECURITY.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
# SDStudios Standard OSS Security Policy

## Supported Versions

Due to the way that TSAB is released and rolled out (continous upgrades and deployments), there is *currently* no set "supported versions". We do plan on starting to do offical versioned releases, which will have a gradual EOL date.

For now, as long as you use the latest code from the main branch, you should be fine.

## Reporting a Vulnerability

If you find any vunrability in our code, please email us directly at [[email protected]](mailto:[email protected]) with the following information;
- What is the vunrability?
- How did you find such vunarability?
- Steps to reproduce
- Expected scope (All users, high target users, certain users, no users affected)
- Contact information

If you choose, you can encrypt your email using GPG, if you take such an action, please email [email protected].</br>
Our GPG key can be found at [https://sd-studios.com/privacy/gpg](https://sd-studios.com/privacy/gpg).

> The reason for a different email address for GPG signing is because the sd-studios.ml email is a forwarded domain, which allows us to filter spam with Cloudflare.</br></br>If you get a reply from the mailbox address, it's just us replying, no need to worry.

0 comments on commit 66fa755

Please sign in to comment.