Create SECURITY.md

remove-bg · Apr 19, 2024 · 469fc6d · 469fc6d
1 parent 05eda1f
commit 469fc6d
Showing 1 changed file with 36 additions and 0 deletions.
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,36 @@
+# Security Policy
+
+We take the security of our software products and services seriously, including all of 
+the open source code repositories managed through our organization.
+
+## Supported Versions
+
+We currently support these versions of this library with security updates.
+
+| Version  | Supported          |
+| -------- | ------------------ |
+| `2.x.x`    | :white_check_mark: |
+| `<= 1.5`   | :x:                |
+
+## Reporting a Vulnerability
+
+If you believe you have found a security vulnerability in this repository, please report 
+it to us through coordinated disclosure.
+
+Please do not report security vulnerabilities through public GitHub issues, discussions, 
+or pull requests.
+
+Instead, please contact us at https://www.remove.bg/support/contact
+
+Please include as much of the information listed below as you can to help us better 
+understand and resolve the issue:
+
+- The type of issue (e.g., buffer overflow, issue in a dependency,...)
+- Full paths of source file(s) related to the manifestation of the issue
+- The location of the affected source code (tag/branch/commit or direct URL)
+- Any special configuration required to reproduce the issue
+- Step-by-step instructions to reproduce the issue
+- Proof-of-concept or exploit code (if possible)
+- Impact of the issue, including how an attacker might exploit the issue
+
+This information will help us triage your report more quickly.