Skip to content

chore(template): sync gh org files to repository #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
mPokornyETM merged 1 commit into from
Jan 14, 2026
Merged

chore(template): sync gh org files to repository #3

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 3 additions & 0 deletions FUNDING.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
# These are supported funding model platforms

buy_me_a_coffee: mPokornyETM
2 changes: 1 addition & 1 deletion LICENSE
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
MIT License

Copyright (c) 2025 mPokornyETM
Copyright (c) 2026 winccoa-tools-pack

Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
Expand Down
30 changes: 30 additions & 0 deletions SECURITY.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,30 @@
# Security Policy

If you discover a security vulnerability in any project within the WinCC OA Tools Pack, thank you for reporting it responsibly.

## Reporting

- **Preferred:** Open a confidential report by emailing <mailto:security@winccoa-tools-pack.example> (replace with your org email) with a clear subject and steps to reproduce. Attach logs, versions and an impact assessment if available.
- **Alternative:** If you cannot email, create a new issue labeled `security` in this repository. Note that private or restricted issues require organization settings; maintainers will triage and move sensitive details to a private channel if needed.

**Important:** Replace the placeholder email address `<security@winccoa-tools-pack.example>` with your real security contact before publishing this repository or copying this `SECURITY.md` into other projects.

## Response policy

- We will acknowledge reports within 3 business days.
- Critical vulnerabilities will receive an initial response and mitigation plan within 5 business days.
- We aim to publish fixes within a reasonable timeframe and will coordinate public disclosure with the reporter.

## Disclosure

- Coordinated disclosure is preferred. Do not publicly disclose the vulnerability until a fix has been released or an agreed timeline has elapsed.
- If you are a security researcher, include contact details and allow the maintainers reasonable time to respond.

## Patches and mitigations

- When a patch is available, it will be published in the repository with a security advisory and release notes.
- We will backport fixes to supported branches where feasible.

## Acknowledgements

- Reporters who follow responsible disclosure may be acknowledged in the project security advisory and/or `SECURITY.md`, unless they request anonymity.