github.com/amazechain/amc@v0.1.3/SECURITY.md (about) 1 # Security Policy 2 3 ## Supported Versions 4 5 Use this section to tell people about which versions of your project are 6 currently being supported with security updates. 7 8 | Version | Supported | 9 | ------- | ------------------ | 10 | 5.1.x | :white_check_mark: | 11 | 5.0.x | :x: | 12 | 4.0.x | :white_check_mark: | 13 | < 4.0 | :x: | 14 15 ## Audit reports 16 17 Audit reports are published in the `docs` folder 18 19 | Scope | Date | Report Link | 20 | ------- | ------- | ----------- | 21 22 ## Reporting a Vulnerability 23 24 **Please do not file a public ticket** mentioning the vulnerability. 25 26 To find out how to disclose a vulnerability in AmazeChain email support@amazechain.com. Please read the [disclosure page] for more information about publicly disclosed security vulnerabilities. 27 28 Use the built-in `amc version-check` feature to check whether the software is affected by any known vulnerability. This command will fetch the latest [`vulnerabilities.json`] file which contains known security vulnerabilities concerning `amc`, and cross-check the data against its own version number. 29 30 The following key may be used to communicate sensitive information to developers. 31 32 Fingerprint: 33 34 ``` 35 -----BEGIN PGP PUBLIC KEY BLOCK----- 36 Version: SKS 1.1.6 37 Comment: Hostname: pgp.mit.edu