The security of the VaultSandbox Gateway is our top priority. We appreciate the community's efforts to responsibly disclose vulnerabilities. This document outlines our security policy and procedures for reporting security concerns.

The latest stable release of VaultSandbox Gateway receives security updates. We encourage all users to upgrade to the newest version to ensure they have the latest security patches.

If you discover a security vulnerability within the VaultSandbox Gateway, please report it to us as quickly as possible. We kindly request that you do not disclose it publicly until we have had a chance to address it.

How to Report: Please send an email to security@vaultsandbox.com.

In your report, please include:

• A clear and concise description of the vulnerability.
• Steps to reproduce the vulnerability.
• The version(s) of VaultSandbox Gateway affected.
• Any potential impact of the vulnerability.
• Your contact information, if you wish to be credited.

We are committed to:

• Promptly acknowledging receipt of your vulnerability report.
• Investigating all legitimate reports thoroughly.
• Keeping you informed of our progress during the remediation process.
• Notifying you when the vulnerability has been addressed.
• Crediting you for your responsible disclosure, if you desire.

Thank you for helping to keep the VaultSandbox Gateway secure.