-
-
Notifications
You must be signed in to change notification settings - Fork 128
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
1 changed file
with
28 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,28 @@ | ||
# Security Policy | ||
|
||
## Supported Versions | ||
|
||
Please find below the list of versions React-Chatbotify currently supports with security updates: | ||
|
||
| Version | Supported | | ||
| ------- | ------------------ | | ||
| >1.0.0 | :white_check_mark: | | ||
|
||
## Reporting a Vulnerability | ||
|
||
If you discover a security vulnerability within React-Chatbotify, we appreciate your help in disclosing it to us responsibly. To report a vulnerability, please send an email to [[email protected]](mailto:[email protected]). We request that you do not publicly disclose the issue until we have had an opportunity to address it. | ||
|
||
When reporting a vulnerability, please include the following details: | ||
- Description of the vulnerability. | ||
- Steps to reproduce the vulnerability. | ||
- Affected versions of React-Chatbotify. | ||
- Any additional information that could help us understand and reproduce the issue. | ||
|
||
We are committed to providing prompt updates regarding the status and resolution of reported vulnerabilities. Once a vulnerability is reported, you can expect the following process: | ||
- **Acknowledgment:** You will receive an acknowledgment of your report within 48 hours of submission. | ||
- **Investigation:** Our team will investigate the reported vulnerability and determine its validity and severity. | ||
- **Resolution:** If the vulnerability is confirmed, we will work on resolving it as quickly as possible. | ||
- **Patch Release:** Upon resolution, we will release a patch update for the affected versions. | ||
- **Public Disclosure:** Once the patch is available, we will coordinate with you on the timing of public disclosure, ensuring that users have ample time to update their installations before details are made public. | ||
|
||
We appreciate your assistance in keeping React-Chatbotify secure. Your contributions help us maintain the integrity and trustworthiness of our project. |