Skip to content

Security: DevSecTop/TF-via-PR

SECURITY.md

Security Policy

Integrating security in your CI/CD pipeline is critical to practicing DevSecOps. This action aims to be secure by default, and it should be complemented with your own review to ensure it meets your (organization's) security requirements.

Supported Versions

Version Supported
v12.X Yes
≤ v11.X No

Reporting a Vulnerability

You must never report security related issues, vulnerabilities or bugs including sensitive information to the issue tracker, or elsewhere in public. Instead, sensitive bugs must be sent by email to [email protected] or reported via Security Advisory.

There aren’t any published security advisories