monkeytype/SECURITY.md

17 lines
1,000 B
Markdown
Raw Normal View History

2021-10-07 21:29:42 +08:00
# Security Policy
2021-10-07 21:29:42 +08:00
We take the security and integrity of Monkeytype very seriously. If you have found a vulnerability, please report it ASAP so we can quickly remediate the issue.
### Reporting a Vulnerability
For vulnerabilities that impact the confidentiality, integrity, and availability of Monkeytype services, please send your disclosure via (1) [email](jack@monkeytype.com), or (2) private Discord chat to Miodec(Miodec#1512). For non-security related platform bugs, follow the bug submission [guidelines](https://github.com/Miodec/monkeytype#bug-report-or-feature-request). Include as much detail as possible to ensure reproducibility. At a minimum, vulnerability disclosures should include:
2021-10-07 21:29:42 +08:00
- Vulnerability Description
- Proof of Concept
- Impact
- Screenshots or Proof
### Submission Guidelines
2021-10-07 21:29:42 +08:00
Do not engage in activities that might cause a denial of service condition, create significant strains on critical resources, or negatively impact users of the site outside of test accounts.