Skip to content
Open
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
20 changes: 20 additions & 0 deletions SECURITY.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,20 @@
# Security Policy

## Reporting a vulnerability

Please report security issues privately to **hi@ofox.ai** — do not open a
public issue. Include what you found, how to reproduce it, and the potential
impact.

We'll acknowledge your report within 48 hours and keep you updated on the fix.

## Scope

This policy covers the ofox API gateway (`api.ofox.ai`), the dashboard
(`app.ofox.ai`), and all public repositories in this organization. A repository
with its own `SECURITY.md` follows that file instead.

## Handling API keys

If you believe an ofox API key has been exposed, rotate it immediately from
your dashboard and let us know at the address above.