From 6da64192d1411ab5d420f819b4a112d0432560c5 Mon Sep 17 00:00:00 2001 From: Mor Paz Date: Mon, 24 Jun 2024 10:46:54 +0300 Subject: [PATCH] Create SECURITY.md (#737) # Description What - Add a security policy outlining how to report vulnerabilities Why - To make it easier to report vulnerabilities and required security fixes in Ocean How - Add `SECURITY.md` file ## Type of change Please leave one option from the following and delete the rest: - [ ] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking change which adds functionality) - [ ] New Integration (non-breaking change which adds a new integration) - [ ] Breaking change (fix or feature that would cause existing functionality to not work as expected) - [ ] Non-breaking change (fix of existing functionality that will not change current behavior) - [X] Documentation (added/updated documentation) ## Screenshots Include screenshots from your environment showing how the resources of the integration will look. ## API Documentation Provide links to the API documentation used for this integration. --- SECURITY.md | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000000..9f180eda63 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,16 @@ +# Security Policy + +## Supported Versions + +| Version | Supported | +| ------- | ------------------ | +| 0.9.x | :white_check_mark: | +| < 0.9.0 | :x: | + +## Reporting a Vulnerability + +If you believe you have found a security vulnerability in an Ocean integration or the Ocean framework, we encourage you to let us know right away. We will investigate all legitimate reports and do our best to quickly fix the problem. + +For dependent packages that the framework uses, please open an issue and we will address it. + +For vulnerabilities or exploits, please send an email with reproduction steps to [security@getport.io](security@getport.io) and [info@getport.io](info@getport.io)