Skip to content

Security: fermatmind/88cn-index-data

Security

SECURITY.md

Security Policy

Reporting Private Data Exposure

If you accidentally submitted private information (email addresses, API keys, access tokens, passwords, revenue data, private screenshots, or any other non-public data) in a pull request or committed file:

  1. Do NOT file a public issue. Public issues are visible to everyone.
  2. Contact the maintainers directly via GitHub's private reporting or by email.
  3. Open a PR to remove the data as quickly as possible. Note that the data may remain in git history.

What NOT to Submit

This repository only accepts public project information. Never include:

  • API keys, access tokens, or credentials (including but not limited to: sk-*, ghp_*, xoxb-*, AKIA*)
  • Private keys, certificates, or secrets
  • Email addresses, phone numbers, or private contact information
  • Revenue, MRR, ARR, GMV, or financial data
  • Stripe customer, session, or checkout data
  • Analytics screenshots or private dashboard data
  • Investor, backer, or capital information
  • Private customer lists or contact data

No Bug Bounty

88CN does not currently offer a bug bounty program. Please do not submit vulnerability reports expecting compensation.

There aren't any published security advisories