File tree Expand file tree Collapse file tree 1 file changed +49
-0
lines changed
Expand file tree Collapse file tree 1 file changed +49
-0
lines changed Original file line number Diff line number Diff line change 1+ ### 🔒 Overview
2+
3+ > SecureAI PolicyGuard is a security-sensitive AI application.
4+ - We prioritize ** confidentiality, integrity, and traceability** .
5+
6+ ---
7+
8+ ### ⚠️ Reporting a Vulnerability
9+
10+ Do ** not** disclose vulnerabilities publicly via Issues.
11+
12+ Instead:
13+ 1 . Email
14+ 15+ 2 . Include:
16+ - Detailed vulnerability description
17+ - Steps to reproduce
18+ - Affected version / commit hash
19+ - (Optional) recommended fix
20+
21+ - You’ll receive an initial response within ** 48 hours** ,
22+ - and a full evaluation within ** 5 business days** .
23+
24+ ---
25+
26+ ### 🧩 Supported Versions
27+
28+ | Version | Status |
29+ | ----------| --------|
30+ | v1.0.x | 🟢 Supported |
31+ | < v1.0 | 🔴 No longer supported |
32+
33+ ---
34+
35+ ### 🧠 Security Principles
36+
37+ - ** Zero-trust architecture** for API & encryption layers
38+ - ** OWASP Top 10** compliance checks in every release
39+ - ** CodeQL scans** via GitHub Actions
40+ - Integrated ** audit logging** & policy verification
41+
42+ ---
43+
44+ ### 📜 Disclosure Policy
45+
46+ - No public disclosure without coordination
47+ - CVE reference (if applicable) & changelog note after patch
48+
49+ ---
You can’t perform that action at this time.
0 commit comments