Skip to content

Security: ryomario/mynotes

Security

SECURITY.md

Security Policy

We take the security of My Notes seriously. If you believe you have found a security vulnerability, please report it to us privately using the procedure described below.


Supported Versions

Only the latest stable version of My Notes receives security updates.

Version Supported
1.x.x (Latest) ✅ Yes
< 1.0.0 ❌ No

Reporting a Vulnerability

Please do not report security vulnerabilities via public GitHub issues.

Instead, please send a detailed security report via email to mario@example.com.

When reporting, please include:

  1. A description of the issue.
  2. A proof-of-concept (PoC) or steps to reproduce the vulnerability.
  3. The potential impact of the issue.
  4. Any potential mitigations or suggested fixes.

We will acknowledge receipt of your report within 48 hours and provide a timeline for resolution, usually aiming to address critical vulnerabilities within 7 days.


Disclosure Policy

Once a fix has been developed, tested, and released, we will publish a security advisory and credit you for the discovery (unless you prefer to remain anonymous).

There aren't any published security advisories