test_framework
/
api-testing
mirror of https://github.com/LinuxSuRen/api-testing.git
4
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
api-testing/SECURITY.md

19 lines
1.3 KiB
Markdown
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

## Reporting Security Issues
The API Testing commnity takes a rigorous standpoint in annihilating the security issues in its software projects. API Testing is highly sensitive and forthcoming to issues pertaining to its features and functionality.
## REPORTING VULNERABILITY
If you have apprehensions regarding API Testing's security or you discover vulnerability or potential threat, dont hesitate to get in touch with the api-testing Security Team by dropping a mail at [api-testing-security@googlegroups.com](mailto:api-testing-security@googlegroups.com). In the mail, specify the description of the issue or potential threat. You are also urged to recommend the way to reproduce and replicate the issue. The API Testing community will get back to you after assessing and analysing the findings.
PLEASE PAY ATTENTION to report the security issue on the security email before disclosing it on public domain.
## VULNERABILITY HANDLING
An overview of the vulnerability handling process is:
The reporter reports the vulnerability privately to API Testing community.
The appropriate project's security team works privately with the reporter to resolve the vulnerability.
A new release of the API Testing product concerned is made that includes the fix.
The vulnerability is publically announced.
Reference in New Issue View Git Blame Copy Permalink