Skip to content

Security: iapex-org/mobile-app

Security

SECURITY.md

Security Policy

Reporting a Vulnerability

We take the security of IAPEX seriously. If you discover a security vulnerability, please report it privately.

Do not report security vulnerabilities through public GitHub issues.

Instead, please send an email to one of the maintainers.

You should receive a response within 48 hours. If for some reason you do not, please follow up via email to ensure we received your original message.

What to Include

  • Type of vulnerability
  • Steps to reproduce
  • Affected versions
  • Potential impact
  • Any suggested mitigation (if known)

Process

  1. Report the vulnerability via email.
  2. The maintainers will acknowledge receipt within 48 hours.
  3. We will investigate and provide a timeline for a fix.
  4. Once the fix is ready, we will release a security advisory.

Supported Versions

Version Supported
latest

Disclosure Policy

We follow a coordinated disclosure process. Please allow us reasonable time to address the issue before public disclosure.

There aren't any published security advisories