Skip to content

Security: ofoxai/community

Security

SECURITY.md

Security Policy

πŸ”’ Supported Versions

Version Supported
Latest βœ…

🚨 Reporting a Vulnerability

We take security seriously at Ofox AI. If you discover a security vulnerability, please report it responsibly.

How to Report

  1. Do NOT open a public issue
  2. Email us at security@ofox.ai with:
    • Description of the vulnerability
    • Steps to reproduce
    • Potential impact
    • Any suggested fixes (optional)

What to Expect

  • Acknowledgment: Within 24 hours
  • Initial Assessment: Within 72 hours
  • Resolution Timeline: Based on severity

Severity Levels

Level Response Time Examples
Critical 24 hours Data breach, authentication bypass
High 72 hours Privilege escalation, data exposure
Medium 1 week Information disclosure
Low 2 weeks Minor issues

πŸ† Recognition

We appreciate responsible disclosure and may acknowledge reporters in our security hall of fame (with your permission).

πŸ“§ Contact

Thank you for helping keep Ofox AI secure! πŸ›‘οΈ

There aren't any published security advisories