monkeytype/SECURITY.md

17 lines
955 B
Markdown
Raw Normal View History

2021-10-07 21:29:42 +08:00
# Security Policy
2021-10-07 21:29:42 +08:00
We take the security and integrity of Monkeytype very seriously. If you have found a vulnerability, please report it ASAP so we can quickly remediate the issue.
### Reporting a Vulnerability
2023-02-14 07:22:37 +08:00
For vulnerabilities that impact the confidentiality, integrity, and availability of Monkeytype services, please send your disclosure via [email](contact@monkeytype.com). For non-security related platform bugs, follow the bug submission [guidelines](https://github.com/monkeytypegame/monkeytype#bug-report-or-feature-request). Include as much detail as possible to ensure reproducibility. At a minimum, vulnerability disclosures should include:
2021-10-07 21:29:42 +08:00
- Vulnerability Description
- Proof of Concept
- Impact
- Screenshots or Proof
### Submission Guidelines
2021-10-07 21:29:42 +08:00
Do not engage in activities that might cause a denial of service condition, create significant strains on critical resources, or negatively impact users of the site outside of test accounts.