If you believe you have found a security vulnerability in MUSAP Projects, please follow these steps:
- Do not report security vulnerabilities through public GitHub issues.
- Email the maintainers - Send an email to methics.info@methics.fi detailing the vulnerability. Include steps to reproduce, if possible.
- Wait for response - Allow the maintainers time to respond and assess the vulnerability.
- The maintainers will confirm the receipt of your report.
- A security advisory will be created on GitHub to track the issue.
- A fix will be developed and tested in a private repository.
- Once the fix is ready, it will be released in a new version of the software.
- We believe in responsible disclosure of vulnerabilities.
- We will coordinate with you to determine an appropriate disclosure date.
- We are committed to ensuring the security and privacy of our users.
- Regular audits and updates are conducted to maintain the security of the project.
Your efforts to responsibly disclose your findings are greatly appreciated and will be acknowledged.