This document outlines security procedures and general policies for BALM (Basalt's Awesome Linux Manager). Reporting a Bug

We are grateful for the testing and analysis carried out by the community, All Bug Reports will be taken seriously, For LLM use refer to the related section in Contributing Guidelines

Normally, bugs can be filed directly in the public GitHub issue tracker, but if you believe there is a security impact, please contact the security team at security@basaltdev.tech

We will most likely respond within 48 hours in most cases, However, Due to this being a volunteer driven project, this time frame could be a week or longer

When a fix is published, you will receive credit under your real name or bug tracker handle in the NEWS document and possibly elsewhere (GitHub, blog post, etc). If you prefer to remain anonymous or pseudonymous, you should mention this in your e-mail.

Disclosure Policy

The maintainer will coordinate the fix and release process, involving the following steps:

Confirm the problem and determine the affected versions.
Audit code to find any potential similar problems.
Prepare fixes for all releases still under maintenance. These fixes will be released as fast as possible.

You may be asked to provide further information in pursuit of a fix.