At InfoSafe, we take security seriously and strive to maintain the highest level of security for our users and contributors. We welcome and encourage the responsible disclosure of security vulnerabilities to help us achieve this goal.
The current version of the website is up to date with all security measures. Previous versions of the project are listed below but security was not yet implmented in the initial versions.
| Version | Supported |
|---|---|
| 1.0.5 | ✅ |
| 1.0.4 | ✅ |
| 1.0.3 | ✅ |
| 1.0.2 | ❌ |
| 1.0.1 | ❌ |
| 1.0.0 | ❌ |
If you have discovered a security vulnerability in InfoSafe, we appreciate your help in disclosing it to us in a responsible and coordinated manner. To report a security vulnerability, please follow these steps:
- Contact Us Privately: Send an email to [email protected] to report the vulnerability. Please do not use public issue trackers, forums, or other public channels to report security vulnerabilities.
- Include Details: In your report, provide a detailed description of the vulnerability, including information about how to reproduce the issue and any potential impact. The more information you can provide, the better we can assess and address the issue.
- Keep the Vulnerability Confidential: We ask that you keep the details of the vulnerability confidential until we have had an opportunity to investigate and address it. We will make every effort to handle your report promptly and keep you informed about the progress.
- Cooperate with Us: Our team will work with you to understand and resolve the issue. Please respond to our inquiries promptly and work with us to ensure a timely resolution.
Our security policy applies to the following areas:
- The InfoSafe source code repository on GitHub.
- Official releases and distributions of InfoSafe.
- The Infosafe website or any subdomains associated with it.
We are committed to acknowledging and resolving security vulnerabilities in a responsible and coordinated manner. To show our appreciation for responsible disclosure, we will:
- Keep you informed about the progress of the resolution.
- Credit you as a contributor to the security fix (if you desire).
We will not pursue legal action against individuals who report security vulnerabilities in a responsible manner, nor will we take legal action against security researchers who comply with this policy.
Thank you for helping us improve the security of InfoSafe and for working with us to protect our users and their data.