github.com/amazechain/amc@v0.1.3/SECURITY.md (about)

     1  # Security Policy
     2  
     3  ## Supported Versions
     4  
     5  Use this section to tell people about which versions of your project are
     6  currently being supported with security updates.
     7  
     8  | Version | Supported          |
     9  | ------- | ------------------ |
    10  | 5.1.x   | :white_check_mark: |
    11  | 5.0.x   | :x:                |
    12  | 4.0.x   | :white_check_mark: |
    13  | < 4.0   | :x:                |
    14  
    15  ## Audit reports
    16  
    17  Audit reports are published in the `docs` folder
    18  
    19  | Scope | Date | Report Link |
    20  | ------- | ------- | ----------- |
    21  
    22  ## Reporting a Vulnerability
    23  
    24  **Please do not file a public ticket** mentioning the vulnerability.
    25  
    26  To find out how to disclose a vulnerability in AmazeChain email support@amazechain.com. Please read the [disclosure page] for more information about publicly disclosed security vulnerabilities.
    27  
    28  Use the built-in `amc version-check` feature to check whether the software is affected by any known vulnerability. This command will fetch the latest [`vulnerabilities.json`] file which contains known security vulnerabilities concerning `amc`, and cross-check the data against its own version number.
    29  
    30  The following key may be used to communicate sensitive information to developers.
    31  
    32  Fingerprint:
    33  
    34  ```
    35  -----BEGIN PGP PUBLIC KEY BLOCK-----
    36  Version: SKS 1.1.6
    37  Comment: Hostname: pgp.mit.edu