mirror of
https://github.com/iterate-ch/cyberduck.git
synced 2026-05-26 19:10:49 +00:00
Publish security policy.
This commit is contained in:
David Kocher
+25
@@ -0,0 +1,25 @@
|
||||
# Security Policy
|
||||
|
||||
## Supported Versions
|
||||
|
||||
Only the [latest](https://cyberduck.io/changelog/) version is supported with security updates.
|
||||
|
||||
## Reporting a Vulnerability
|
||||
|
||||
We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your
|
||||
contributions.
|
||||
|
||||
To report a security vulnerability, use
|
||||
the [GitHub Security Advisory feature](https://github.com/iterate-ch/cyberduck/security/advisories). This feature allows
|
||||
you to privately discuss, fix, and publish information about security vulnerabilities.
|
||||
|
||||
Please include as much of the information listed below as you can to help us better understand and resolve the issue:
|
||||
|
||||
* Any special configuration required to reproduce the issue
|
||||
* Step-by-step instructions to reproduce the issue
|
||||
* Proof-of-concept or exploit code (if possible)
|
||||
* Impact of the issue, including how an attacker might exploit the issue
|
||||
|
||||
## Preferred Language
|
||||
|
||||
We prefer all communications to be in English.
|
||||
Reference in New Issue
Block a user