Skip to content

Security: cloudmercato/django-appointment

Security

SECURITY.md

Security Policy

Supported Versions

Version Supported
2.x.x
< 2.0

Reporting a Vulnerability

The security of this project is a top priority. If you believe you have found a security vulnerability in Django-Appointment, we encourage you to let me know right away. We will investigate all legitimate reports and do our best to quickly fix the problem. Please follow these steps to report a vulnerability:

  1. Do Not Publicly Disclose the Vulnerability:

    • Please do not publicly disclose the vulnerability until it has been handled.
  2. Contact Us Privately:

  3. Wait for Initial Response:

    • We aim to respond to your report within 48 hours with the next steps.
  4. Coordinated Disclosure:

    • We will work with you to ensure we understand the scope of the issue and will arrange a coordinated disclosure plan.

Dependencies

This project depends on several third-party libraries:

  • Django==4.2.7
  • Pillow==10.1.0
  • phonenumbers==8.13.25
  • django-phonenumber-field==7.2.0
  • babel==2.13.1

We strive to keep these dependencies up to date and free from vulnerabilities. If you find a vulnerability in one of these dependencies, please follow the steps above to report it.

Policy Updates

This policy may be updated from time to time to reflect changes in our practices or in the regulatory environment.

There aren’t any published security advisories