Skip to content

Security: Abblix/Oidc.Server

SECURITY.md

Reporting Security Issues

Introduction

The security of our systems is our top priority. If you have discovered a security vulnerability in our project, we appreciate your cooperation in responsibly disclosing it to us.

Please Follow These Steps:

  1. Do Not Report Security Vulnerabilities Publicly

    • Please do not disclose any details about the vulnerability in public forums, GitHub issues, or any other public channels. Such actions can potentially lead to misuse and could harm our users.
  2. Email Us Directly

    • To report a security issue, please send an email directly to us at [email protected]. Include as much information as possible about the vulnerability, including:
      • The conditions on which the vulnerability can be reproduced.
      • Any potential impacts of the vulnerability.
      • How you found the vulnerability, if you'd like to share this.

What Will Happen Next?

  • Acknowledgement: We will acknowledge your email within 24 hours.
  • Investigation: Our security team will investigate the issue and work to quickly address it.
  • Communication: We will keep you informed of our progress as we work to resolve the vulnerability.
  • Disclosure: Once the issue has been resolved, we will work with you to coordinate the disclosure of the vulnerability to ensure that all our users are adequately informed and protected.

Our Commitment

We are committed to working with security researchers and the community to make our products safer. We appreciate your efforts in responsibly reporting any issues you find. We promise to handle your report with confidentiality and will not take any legal action against you as long as you adhere to these guidelines.

Thank you for helping us keep our products and our users safe!

There aren’t any published security advisories