mirror of
https://gitlvb.teallvbs.xyz/IQ.Lvbs/IQ.Pilot.git
synced 2026-06-08 10:55:03 +08:00
53 lines
1.6 KiB
Markdown
53 lines
1.6 KiB
Markdown
# Security Policy
|
|
|
|
## Supported Versions
|
|
|
|
| Component | Version | Supported |
|
|
| --------- | ------- | --------- |
|
|
| IQ.Pilot | latest | TRUE |
|
|
| konn3kt | latest | TRUE |
|
|
|
|
## Scope
|
|
|
|
This security policy covers the following components, but applies to all IQ.Lvbs software:
|
|
|
|
- **IQ.Pilot**
|
|
- **konn3kt**
|
|
|
|
## Reporting a Vulnerability
|
|
|
|
If you discover a security vulnerability in IQ.Pilot or konn3kt, please report it responsibly, abuse is against the terms of service for IQ.Lvbs software.
|
|
|
|
**Email:** security@iqlvbs.com
|
|
|
|
Please include:
|
|
|
|
- A description of the vulnerability and its impact, and potential impact
|
|
- Steps to reproduce the issue
|
|
- Affected component(s)
|
|
- Any relevant logs, screenshots, or proof of concept code that can assist with reproduction.
|
|
|
|
## Response Timeline
|
|
|
|
- **Acknowledgment:** Within 168 hours of receipt
|
|
- **Initial Assessment:** Within 1-14 days
|
|
- **Resolution Target:** Depends on severity; critical issues are prioritized immediately
|
|
|
|
## Responsible Disclosure
|
|
|
|
We ask that you:
|
|
|
|
- Allow reasonable time for us to investigate and address the issue.
|
|
- Avoid accessing or modifying other users' data, this is against IQ.Lvbs policy, and illegal in many jurisdictions.
|
|
- Do not exploit vulnerabilities beyond what is necessary to demonstrate the issue.
|
|
|
|
## Out of Scope
|
|
|
|
- Issues in third-party dependencies unless the vulnerability is triggered by our specific usage
|
|
|
|
## Recognition
|
|
|
|
We appreciate and recognize security researchers who help keep IQ.Lvbs software safe. With your permission, we will credit you in our release notes when a reported vulnerability is fixed.
|
|
|
|
- IQ.Lvbs, a part of Project Teal Lvbs Inc ©️
|