Skip to content

docs: Create SECURITY.md with responsible disclosure policy #212

Closed
#270
Closed
docs: Create SECURITY.md with responsible disclosure policy#212
#270
Assignees
Faithy5
Labels
GrantFox OSSIssue tracked in GrantFox OSSMaybe RewardedIssue may be eligible for a GrantFox rewardOfficial CampaignCampaign: Official CampaigndocumentationImprovements or additions to documentationgood first issueGood for newcomerssecuritySecurity related issues
@Xhristin3

Description

@Xhristin3
Xhristin3
opened on Jun 15, 2026

Problem Statement

No security policy or responsible disclosure process exists. Security researchers have no documented way to report vulnerabilities.

Evidence

SECURITY.md does not exist.

Impact

Vulnerabilities may be disclosed publicly instead of privately. No defined response SLA. Potential security issues may go unreported.

Proposed Solution

Create SECURITY.md with:

  1. Supported versions
  2. How to report a vulnerability (private channel)
  3. Expected response time (48h acknowledgment, 7d resolution for critical)
  4. Disclosure policy (coordinated disclosure after fix)

Acceptance Criteria

  • SECURITY.md exists
  • Includes reporting instructions
  • Includes supported version policy
  • Includes response SLA

File Map

  • SECURITY.md — new

Labels: documentation, security, good first issue
Priority: Medium | Difficulty: Beginner | Estimated Effort: 0.5h

Labels: documentation,security,good first issue
Priority: Medium | Difficulty: Beginner | Estimated Effort: 0.5h
Backlog ID: REPO-029

Metadata

Metadata

Assignees

Labels

GrantFox OSSIssue tracked in GrantFox OSSMaybe RewardedIssue may be eligible for a GrantFox rewardOfficial CampaignCampaign: Official CampaigndocumentationImprovements or additions to documentationgood first issueGood for newcomerssecuritySecurity related issues

Type

No type

Fields

No fields configured for issues without a type.

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions