CloudBoostUP takes security seriously. If you discover a security vulnerability in any of our projects, please report it responsibly.
Please do NOT report security vulnerabilities through public GitHub issues.
Instead, please send an email to: support@cloudboostup.com
Include the following information:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Any suggested fixes (optional)
- Initial Response: Within 48 hours
- Status Updates: Every 7 days until resolution
- Disclosure: We'll work with you on coordinated disclosure
We provide security updates for the following versions:
| Version | Supported |
|---|---|
| Latest | β |
| < Latest | β |
We recommend always using the latest version of our projects.
When using our tools and templates:
- Keep Dependencies Updated: Regularly update all dependencies
- Review Permissions: Only grant necessary permissions
- Secure Credentials: Never commit secrets or API keys
- Use Secrets Management: Leverage Azure Key Vault or similar services
- Enable MFA: Multi-factor authentication for all accounts
- Monitor Activity: Regular audits of access logs
- Regular security audits of our codebase
- Dependency scanning and automated updates
- Code review requirements for all changes
- Secure development lifecycle practices
- Compliance with industry standards
For security-related inquiries:
- Email: support@cloudboostup.com
- Website: https://cloudboostup.com
Thank you for helping keep CloudBoostUP and our community safe!