Create SECURITY.md (#737)

# Description What - Add a security policy outlining how to report vulnerabilities Why - To make it easier to report vulnerabilities and required security fixes in Ocean How - Add `SECURITY.md` file ## Type of change Please leave one option from the following and delete the rest: - [ ] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking change which adds functionality) - [ ] New Integration (non-breaking change which adds a new integration) - [ ] Breaking change (fix or feature that would cause existing functionality to not work as expected) - [ ] Non-breaking change (fix of existing functionality that will not change current behavior) - [X] Documentation (added/updated documentation) ## Screenshots Include screenshots from your environment showing how the resources of the integration will look. ## API Documentation Provide links to the API documentation used for this integration.
port-labs · Jun 24, 2024 · 6da6419 · 6da6419
1 parent 2e2c149
commit 6da6419
Showing 1 changed file with 16 additions and 0 deletions.
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,16 @@
+# Security Policy
+
+## Supported Versions
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 0.9.x   | :white_check_mark: |
+| < 0.9.0 | :x:                |
+
+## Reporting a Vulnerability
+
+If you believe you have found a security vulnerability in an Ocean integration or the Ocean framework, we encourage you to let us know right away. We will investigate all legitimate reports and do our best to quickly fix the problem.
+
+For dependent packages that the framework uses, please open an issue and we will address it.
+
+For vulnerabilities or exploits, please send an email with reproduction steps to [[email protected]]([email protected]) and [[email protected]]([email protected])