If you discover a security vulnerability in any Plexus repository, please report it responsibly.
Email: support@plexus.company
Do NOT open a public GitHub issue for security vulnerabilities.
- Description of the vulnerability
- Steps to reproduce
- Affected repo(s) and version(s)
- Potential impact
- Acknowledgment: Within 48 hours
- Initial assessment: Within 1 week
- Fix or mitigation: Depends on severity, but we aim to resolve critical issues as quickly as possible
This policy applies to all repositories under the plexus-oss organization:
Thank you for helping keep Plexus and its users safe.