flamingo.me/flamingo-commerce/v3@v3.11.0/SECURITY.md

flamingo.me/flamingo-commerce/v3@v3.11.0/SECURITY.md (about)

     1  # Security Policy
     2  ## Reporting a Vulnerability
     3  
     4  Please email reports about any security-related issues you find to flamingo@aoe.com. This mail is delivered to the core maintainer team.
     5  
     6  Your email will be acknowledged within two business days, and you'll receive a more detailed response to your email within 7 days indicating the next steps in handling your report.
     7  
     8  Please use a descriptive subject line for your report email.
     9  
    10  In addition, please include the following information along with your report:
    11  - Your name and affiliation (if any).
    12  - A description of the technical details of the vulnerabilities. It is very important to let us know how we can reproduce your findings.
    13  - An explanation of who can exploit this vulnerability, and what they gain when doing so -- write an attack scenario. This will help us evaluate your report quickly, especially if the issue is complex.
    14  - Whether this vulnerability is public or known to third parties. If it is, please provide details.