At Winged-Python, we take security seriously. We welcome and appreciate responsible disclosure of security vulnerabilities.
If you discover a security vulnerability in this project, please follow these steps to report it:
-
Privately Notify Us: Please send an email to michel_lutz@icloud.com with details of the vulnerability. Please do not disclose the issue publicly until we have had a chance to review and address it.
-
Provide Information: In your email, include a clear description of the vulnerability, steps to reproduce it, and any supporting documentation or proof-of-concept code.
-
Cooperate with Us: We may need to work with you to better understand the issue, so please be prepared to provide additional information or assist with testing.
-
Responsible Disclosure: We will work diligently to address the vulnerability and will keep you updated on our progress. Once the issue is resolved and a fix is available, we will coordinate with you to determine the appropriate time for disclosure.
We strive to support and provide security updates for the latest stable version of Winged-Python. If you are using an older version, we encourage you to update to the latest release to ensure you have access to security patches and enhancements.
To enhance the security of your Winged-Python installation, we recommend following these best practices:
- Keep your dependencies up to date.
- Review and apply security updates promptly.
- Limit access to your Winged-Python instance to trusted individuals.
- Regularly review and audit your code for security vulnerabilities.
- Implement strong authentication and authorization mechanisms.
Thank you for helping us keep Winged-Python secure. Your cooperation and responsible disclosure are greatly appreciated.