From e26839ad3056e4a82969b89e7a5bc67dd0bdcbd0 Mon Sep 17 00:00:00 2001 From: ItsDrike Date: Sun, 30 Jun 2024 20:19:46 +0200 Subject: [PATCH] Add security policy --- .github/assets/github_security_tab.png | Bin 0 -> 6974 bytes SECURITY.md | 18 ++++++++++++++++++ 2 files changed, 18 insertions(+) create mode 100644 .github/assets/github_security_tab.png create mode 100644 SECURITY.md diff --git a/.github/assets/github_security_tab.png b/.github/assets/github_security_tab.png new file mode 100644 index 0000000000000000000000000000000000000000..c3497fa42ec17a0064984ba5383cd9e640c8290e GIT binary patch literal 6974 zcmch6g;x|`-2NybCL$>aNGq{)mmuBUES(ETH-aeABHi8Hjevx}!UEEg(!C2y2}}Iu z`~C^P_nh~hIkR`}%%1t&JD+%-=Z34P$Uc2U{s;hor}A=A8US!V8te<<-3QMG*{8Pv zK!GDKC86b=ak%6oqP0%}9NAPv>uB|b9ayrIHpoRPSh7nxEom84k$4ow$L2lyu+jUqL$2|O84ct?COA%piCSkWA z#UYg@A!I~MBn|VUGn|gBTYW=HFVL{Hb#tmk#hl-^QM;C0K1Jslmu*)X6Lq2ZNb2qv z=SfMWQO-@bIa2dg>k%s7Hjo!8vhXF$=hBXiY>U zt#~zN*NyFeZ!LT}%s-VF($*%}>T^@i2CfTjUP9RT-+wK0&vrv)^7{w+Wxn7>YP`W^ zRJ&^tS|3c%3z0$kHKAHV6SX(cnIK2LM zUeEP8p<5jnIB%}(veuRsooaoGK>pkvkKN(x;FOk@))RL)r*P~ZX_>P@!y8%+`<)irc1TpeYx?w2HLgMW>yLx1V(({3uq)a=~APIrFK=6yI_ z*wP~_f8w^itHx4Zq?9?o9`~T*hmE}*K{W*hIc>F(&jpe)o&gouxN<&8k;1y`jMNyG zk`)V=nz#Lsoe+0bR&lLwJyTl0y+KT*XEgrdw{0}<^mG*A<0a`x>#@|yV#5PATH)tE z*o--OxJFr+i*$5EheybTJsm#qAD_w_tleP5jU?aGS;#UKQ-AbZF|*2IeD>Zz!8H_G z6;@-q_9P)y3-R-(%ih5s$8X;_7P0K29480FLUz+aY<&QVFFfUTkn4LBD z7NqUzMPEdUUI+joKlM=Lr3j%Q`Fh7|jU9;XHHmg|5wQ`QgDW zODj)X$*GhIK|46Vqd5;b8xxDBfT&}S+v;7Up@E!5Wd zb?|Oc_+g+OBF&?FLAbfb_C)6apq9<^mJw3b(s1xIf8(4uuiaMNd?J5sqOM&1ciLnT z=R7>i+A=LIm6N3XBb{~r57A@ahVSFMZrdl3id@-U&hGO=LqiW&%H3cT=~&Clc$q;*ASwSx9%To*d?x1I6#0A7ULs84^>?|y# zlzu0?jltR3D^nv;2KrWZR&4aFuP7;m4dezr5#;t(+H?JQq`JEHR*AW>oV8Sff`Z`K zPDo@x0}4#$U=C_%*yiXwOjVl5d`cnK(XfV)@;KX>OP8)zM2RaI)Hu^{?zhKw@0{NU z1O;2c8`W?)VLTOLGWCvL^fQ6S>6UeUp<=v-h9Vqp@nMNEP3Rg6D_U9UkpDxjj!vc^ z^%Fp|NF_QvlEwc_2xH|Wr{|sRIp-0>yFR$Jzjx+M7N$?G$qR#(udkc88;lGN3f!I_ z9#m9})-Rs7kEL)x{JR%(Gg}SS)X+IUKeOtP z2ESWod**DlaXJPavUK$n^wlEOR3j6UJGXXBNZ1<&CYJmgBCyhJ&F}&5>_4ABjUt}n zGVgd3Utnc5>2`IRKX4xoSI90X92y#akSVgcx$APX$7@Br8I-dwT9p(Z z&&_i!>3hXpxjQKnP3|E^-;leSe-}%axqrPGNlGUZl~T;TVtbst+_y}%xV-nO{0mN- zFL`{ij7j?l8Frs#1*EaY`}o?&eab_YiHVLd{`<*x_%1RlD=lsEfZxemSGzDrAj<$M zCLLfduiqM-xcRwH3LxY27qDPhTU!HdefCJey36dx_nITKF1n76&x=b&;jPPJq33M} zE^dGF%Zf<6*DUQ76efBf1Q@GVXc%c>1J;U3uh8dCj*gC(+vf9d-`0V9)pIE+>k^;7 z%KW8@C1*;J@3?^fQLR z?miRKcCPrX^K$EnwtV=sYkK~@PkZ)d;1^nw{qG)_Cb+pK_^ayIw@IBZPKl_vzj7vL zXPbD%W<@7jxoO4^++#<*?~Ekfbuw!HmTmHyg}ZlnGG32$r*Eh`C}=Y&iB9&LhPw94 z?t3+?l&Ga&!5(r7^2S}BjVGrx@4vDdTH9gvtKY^@V+AD_Z)dcguvS*!Q=@Ae>PCk~ zpB-I12#R>L*T>-jOK0D9X)2%15TQyqJ-P>YBfU&o?Guxl_%QseC&$Mw&dyV_v$IqG zwdaHn@TnH(=JYf*CnbxM6Fp`J-dFsbn4g~-cE(^MC?@^EmI4zu?z{<BqzDD6s1b7_78&UDOh^VGuH z@ZI26QI5Oo^{R|>p zqi5}Nd!P@rko#Dr781u6hdy~(=U#eQ&7v#fe*^$%v@cm@{Rq6RCZ~J*uLR(IbJbWL zIb56bI{Py;TP)yyknr(wG6aepghr!_RkKRUN*P7{$7hMPHI3OA=pG+J=<{fW`EcZi z24}P`#-#&B?n=OzOK%op<>L@pyBKI3930CQ$Lii|gt4r2dd$_eo}FyBd)+DpoI8}Z z`k?a*reQM^wmkX$SB;I0N+gNt>B0cP|5N_L~kbeSD;F?!QCl z%hos8oSdA@&diXLkxvKwb7ny@##5L>xA(1SweOtc7_o7%pA&5Euh;)xhAJos(cS1@ z#Bx|{DXBlQ${p>9p%za{N@{Cwg+@nMk8EzO{`oPvt1OKJVB_F^HNIAvydN&LMj_Ht z7y>o?pQiSG#V7S+Z<;3x#K2VPjW0uM(j)BvTQH2Srlx$_K#aI3BBFoz_14C+fbfub z?Zt~fe@v>o+)O$xJCbzO{y9!=Wh{1pM+GUnkB?7C$QQpx*iuPOQe;>}V|H9p+A9Kb z@K`i!_!d^8SDp3!dt$23MojPTT7K1R;c8AFF3#W6{nAhg8bJn+n_tm~hU8tai~@Rm zd{sGbfm&4VDk)&v@LkRJ=(4A$N4C@sNtGqep_G4@3enfl(198mcy=!gV7foSbm;;= zX7+_pNaIoj5PDEa%}t<@nVRhv33SG22CG6@YG zU1m&-s*zE~KYn)hWX|%=s&6GpwSA!u^;+DN%^2{`dxQ)Esd9;nW6u(|5tAnz z%@kdrk@sTY5lBf-H(cp9?TCv535C|wSy2(nA8|{s9-)UxPIzYhYRn8Vu~5!hd|aDF8Y*z z|L^x^FK@j$xQT9vtdUUQc}06V%tih8qJF*m*4T<|mtEqaJvZTc+}heR6j%@#q0cQ6 zDn{6t%b8!gt^Dwtl`O6{IF5`c+ne{;M>2^Tba^T-DwAaE5a!4KyX@k&Zb{cS4(|$B z=nXJ=|Ni~vLbIde%7@z3tu3VX!m6wsL(a(Mfq9T5fACsmF3L@g~|Mi`gaAdABxV48j-v}VF! z#mhy#;>MWeHX&JT@&rGo#o4TSL2Q8+rc-sz`}!{#Ktw|1;57%=JLnC?r+@JPjNH}L z-H#!kaXk)BeeSaUbWl+c)>jw(8Xwe?lEMZc0jNjl?Mq*ej>{|t)zRGFIdb(^GMsZx=}W8og>gv7}2m=GcJ2N|(iH+r?C@=VUc6|Kk zz3>GkK8gY89?8NTc=1@|z$yzjh@Y643W?E~XKgm@$|CC-pP%=|%&@%=_z@TP!aT!q zvbacMLn5k~WA9K~Uf#{^M9<~;95cE@KMWsPG_@i19?9keBD6um+I-zf2=Elydy*af zK~y+R%}x^&lXM206x}ojYECktb5I9o_=Cd;O*Jil%+}NVq%c_8HwlIt-V!lhUd~QV zK>>ljUmsgrW_4Sd>{)vlITB=@|pNIcER?gw$ z~(fPBIY@1X$|VF^&uvsdJD%n z-Bw9DFwa*(d;ig2cci85_4z$K@i^mU^tv3!0%0-OC-l2KvV3c22Qqeb zb$A%T^;_PMi7fea{+@xLs^`fic(TUK+#xADfiuQ z01mbI$0zttm-e@s)O2-~lpONfuHf3`z&pS5gH!{9;NV~jDXEPOVt6VQBcecFvncNJ zpZ|~ZZA&Zr06*MGM8z_EXy_#yeSxSSAE5RoA-lC&NQ6g9D`9POosNl}oq^5K(jl*` z3^yvr0LDbmS|R9|)`(y?Y0k=YG_{mtj0gG6tmEA4f2#Sm6TP8eIUi8X(#YnK2MH=@ zg0!#ixO8SRh(L#iV{|oWzc%|{{H=Tb*kXEWI6CV5_uDr9%>Vt^>HZ_ zUwyV3<*~qTwWlTj_N{0@fccc3zFlcm7L~a89k@h?y2Sp-ih_cIn<9i{PY>brG^i1X z`CNM|Dk}0DqV^;12ZfEBzW&*^()7Gkh>0bB5Z)Jm7KBZZD;k(6Ed~AIv8~#be+v@2 z7+h?y1T2MjJq7OF-unCd$Ij;SU7s%$u^E1T-y3E~Ciz}+&=TEPvIFuQ@ZlCe@B8np zeQ|-7*7kIW{@Qk+QtyTPZzfsX2bl43G(%Zj%TFgohu4HvYHlw9NC1i$+>{Ep`@sz`s|gU9tWMa#Gx5McbH`eKrz7-{L(R&@!J3Ay z$sIl0p`^E-S30V2r#!jP$`VoOD1-M%ti!9hx1J2tV~umlbtTwPwa2pNi!Cg=)%Utn z-L{(q9RiN8TMyHCmpePz+^>d{*&TJOY+*1$;=%*x`62e#Y7&LZ;a!v@pvrAVlM9D4 zd!d$K_D(8+=Tox-eq~!c=9v(`3~_&N6mnJ2bz{&AwQL+6g$;lJ+IZCOjk!4r1_Kdm z+dyjRkrmX@<0-JSv!^IO>`n&zAMYJTcr4WqT;Pi@OLSB#C_MA=!(3h7%#|r9Dki6; z9L(1k1Xmkqe|RNJfQi)$Dd*;w!zNGq1G0EG{k%-KzrdsV71I( zSu_a2e$YHt1acl-h;dy*Q=2ER>%h5V`$bEJh@0o&cN#D_V&dX}?rE!-_U%u_saqJM z3mIr@kGF+~M`La7&(0evii5-Q@^U(M6SVMRZ*Rd>Zl1k;8CJ|Is2Qwz+GX~zWiIpr zc^^<02W7!+6&y~tQObautGGhNr_oVj%}raK{jSnjk z3#K;w0b5asXNC`+(k2s;qTJo-e{DR&yQX|bVtU;q;i<#8p3IbRSKj6LZVLA}dd5sj zgTH=mF*xKg{>^If>5o{#I|y015^ektC@_HD}Q(e`J6=9f|Pz-@iv^ zCltK)Je9S_$R%;(6bgl3Sv5-(G+&;Zn^fH0*nwL(c(sqV{`(CJFw2qww|3@8|2LPn z&mKtbh;RQalis5Z#xj27dD@WYyS1ARc2A!|ro-cL+n(UjOjZB;hl}q{Fh@kaVyg7$ t;44ppiEYmCe|t>1sNUQE4|8ttchM4^D<&MD!F@46URp(}O42m={{g}}?Vtbv literal 0 HcmV?d00001 diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000..7851326 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,18 @@ +# Security Policy + +## Reporting Security Vulnerabilities + +**We urge you not to file a bug report in the GitHub issue tracker, since they are open for anyone to see** + +Instead, we encourage you to reach out to the maintainer team so we can assess the problem and later disclose it +responsibly. + +To do so, you can use the `Security` tab and file a bug report there +![image](./.github/assets/github_security_tab.png) + +Alternatively, you can also reach out to the maintainer team directly. If you prefer this approach, you can contact one +of the people below: + +- **ItsDrike** (project maintainer and owner) + - **Email:** `itsdrike@protonmail.com` + - **Discord:** `@itsdrike`