This document outlines security procedures and general policies for Dan Mugh Open Source projects as found on https://github.com/danmugh.
I take all security vulnerabilities seriously. Thank you for improving the security of my open source software. I appreciate your efforts and responsible disclosure and will make every effort to acknowledge your contributions.
Report security vulnerabilities by emailing me at:
contact@danmugh.com
I will acknowledge your email within 24 hours, and will send a more detailed response within 48 hours indicating the next steps in handling your report. After the initial reply to your report, I will endeavor to keep you informed of the progress towards a fix and full announcement, and may ask for additional information or guidance.
When I receive a security bug report, I will coordinate the fix and release process, involving the following steps:
- Confirm the problem.
- Audit code to find any potential similar problems.
- Prepare fixes.