# Security Policy ## Supported Versions | Component | Version | Supported | | --------- | ------- | --------- | | IQ.Pilot | latest | TRUE | | konn3kt | latest | TRUE | ## Scope This security policy covers the following components, but applies to all IQ.Lvbs software: - **IQ.Pilot** - **konn3kt** ## Reporting a Vulnerability If you discover a security vulnerability in IQ.Pilot or konn3kt, please report it responsibly, abuse is against the terms of service for IQ.Lvbs software. **Email:** security@iqlvbs.com Please include: - A description of the vulnerability and its impact, and potential impact - Steps to reproduce the issue - Affected component(s) - Any relevant logs, screenshots, or proof of concept code that can assist with reproduction. ## Response Timeline - **Acknowledgment:** Within 168 hours of receipt - **Initial Assessment:** Within 1-14 days - **Resolution Target:** Depends on severity; critical issues are prioritized immediately ## Responsible Disclosure We ask that you: - Allow reasonable time for us to investigate and address the issue. - Avoid accessing or modifying other users' data, this is against IQ.Lvbs policy, and illegal in many jurisdictions. - Do not exploit vulnerabilities beyond what is necessary to demonstrate the issue. ## Out of Scope - Issues in third-party dependencies unless the vulnerability is triggered by our specific usage ## Recognition We appreciate and recognize security researchers who help keep IQ.Lvbs software safe. With your permission, we will credit you in our release notes when a reported vulnerability is fixed. - IQ.Lvbs, a part of Project Teal Lvbs Inc ©️