Skip to content

Files

Latest commit

 

History

History
15 lines (8 loc) · 1.1 KB

SECURITY.md

File metadata and controls

15 lines (8 loc) · 1.1 KB

Report a security issue

The Question project welcomes security reports and is committed to providing prompt attention to security issues. Security issues should be reported privately via [email protected]. Security issues should not be reported via the public Github Issue tracker.

Vulnerability coordination

Remediation of security vulnerabilities is prioritized. The project team coordinates remediation with third-party project stakeholders via Github Security Advisories. Third-party stakeholders may include the reporter of the issue, affected direct or indirect users of Question, and maintainers of upstream dependencies if applicable.

Security advisories

The project team is committed to transparency in the security issue disclosure process. We announce security issues via project Github Release notes.

Security Updates

Security updates will be published as non-breaking changes via semantic versioning.