-
-
Notifications
You must be signed in to change notification settings - Fork 4
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
d3df104
commit 23e02f6
Showing
1 changed file
with
43 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,43 @@ | ||
| ## Security Policy for Amazon Product Details Scraper | ||
|
|
||
| This document outlines the security policy for the Amazon Product Details Scraper project on GitHub. | ||
|
|
||
| **1. Reporting Vulnerabilities:** | ||
|
|
||
| We appreciate your help in keeping this project secure. If you discover a security vulnerability, please report it responsibly by following these steps: | ||
|
|
||
| * **Private Communication:** Directly contact the project maintainer (ranjan-mohanty) through private message on GitHub or email (if provided). This ensures a prompt and controlled disclosure process. | ||
| * **Detailed Description:** Provide a detailed description of the vulnerability, including steps to reproduce it and potential impact. | ||
| * **Confidentiality:** Keep the vulnerability confidential until a fix is released to prevent exploitation. | ||
|
|
||
| We will acknowledge your report and work on a fix with the following goals: | ||
|
|
||
| * **Timely Response:** We will address reported vulnerabilities as quickly as possible. | ||
| * **Transparency:** We will keep you informed of the progress towards a fix and its estimated release date. | ||
| * **Fix Release:** We will release a fix for the vulnerability in a timely manner. | ||
|
|
||
| **2. Security Advisories:** | ||
|
|
||
| Once a fix for a security vulnerability is released, we may publish a security advisory on the project's GitHub repository. This advisory will: | ||
|
|
||
| * Describe the vulnerability in detail. | ||
| * Explain the potential impact of the vulnerability. | ||
| * Provide instructions on how to update the scraper to the fixed version. | ||
|
|
||
| **3. Supported Versions:** | ||
|
|
||
| We will only provide security fixes for the most recent versions of the scraper. Users are encouraged to stay up-to-date with the latest releases to benefit from the latest security improvements. | ||
|
|
||
| **4. Responsible Scraping:** | ||
|
|
||
| This scraper is intended for educational and research purposes only. Users are responsible for using the scraper in a compliant and ethical manner. Respecting robots.txt and terms of service of websites is crucial to avoid misuse. | ||
|
|
||
| **5. Disclaimer:** | ||
|
|
||
| While we strive to maintain the security of this project, we cannot guarantee that it is completely free of vulnerabilities. Users are encouraged to exercise caution when using any scraping tool. | ||
|
|
||
| **6. Reporting Abuses:** | ||
|
|
||
| If you suspect any misuse of this scraper for malicious purposes, please contact the project maintainer immediately. | ||
|
|
||
| We appreciate your cooperation in making this project secure! |