Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Create SECURITY.md #710

Merged
merged 1 commit into from
Nov 2, 2024
+78 −0
Merged

Create SECURITY.md #710

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
78 changes: 78 additions & 0 deletions Style Transfer/SECURITY.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,78 @@
# Security Policy

## Reporting a Vulnerability

We take the security of our project seriously. If you discover any security-related issues or vulnerabilities, please report them to us responsibly by following these guidelines:

1. **DO NOT** create a public GitHub issue for security vulnerabilities.
2. Send a detailed report to [email protected]
3. Include as much information as possible:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Suggested fix (if any)

## What to Expect

- We will acknowledge receipt of your report within 48 hours
- We will provide regular updates about our progress
- We will maintain confidentiality regarding your report
- Once the issue is resolved, we will publicly acknowledge your responsible disclosure (unless you prefer to remain anonymous)

## Security Best Practices

For users and contributors of this project:

1. **Keep Dependencies Updated**
- Regularly update all dependencies to their latest secure versions
- Monitor security advisories related to project dependencies

2. **Authentication & Authorization**
- Use strong passwords
- Enable two-factor authentication where available
- Follow the principle of least privilege

3. **Data Protection**
- Do not share sensitive information in public channels
- Encrypt sensitive data in transit and at rest
- Be cautious with logging sensitive information

4. **Code Security**
- Review code changes carefully
- Follow secure coding practices
- Avoid hardcoding sensitive information
- Use proper input validation and sanitization

## Scope

This security policy applies to:
- The main project repository
- Official releases
- Official project documentation
- Project-related communications

## Supported Versions

| Version | Supported |
| ------- | ------------------ |
| latest | :white_check_mark: |

## Security Updates

Security updates will be released as soon as possible after a vulnerability is confirmed. Users will be notified through:
- Security advisories
- Release notes
- Project communication channels

## Acknowledgments

We value and appreciate the security research community's efforts in helping keep our project secure. Responsible disclosure of vulnerabilities helps us ensure the security and privacy of our users.

## Contact

For security-related matters, please contact:
- Email: [email protected]

---

This security policy is subject to change without notice. Please check back regularly for updates.
Loading