Skip to content

Security: aashishvanand/airport-data-js

SECURITY.md

Security Policy

Supported Versions

Currently, only the latest major version of airport-data-js (or whatever you name your package) is being actively supported with security updates.

Reporting a Vulnerability

Your security is of utmost importance. If you believe you've found a security issue in airport-data-js, please notify me. I appreciate your efforts in responsibly disclosing your findings and will make every effort to acknowledge and address them as soon as possible.

Disclosure Policy

  • Please give me a detailed overview of the potential issue, avoiding too much technical jargon if possible.
  • Let me know as soon as possible upon discovery of a potential security issue.
  • Provide me with a reasonable amount of time to address the issue before any disclosure to the public or a third-party.
  • Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of the service.

Process

  1. Email the details of your findings to aashishvanand@gmail.com. Please use a descriptive subject line.
  2. You'll receive a response from me within 48 hours acknowledging your email.
  3. I will investigate the issue and strive to keep you informed about my progress towards a fix.
  4. Once the issue is resolved, I may ask you to validate the solution.

There aren’t any published security advisories