Skip to content
Open
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
21 changes: 21 additions & 0 deletions SECURITY.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
# Security Policy

## Supported Versions

Use this section to tell people about which versions of your project are
currently being supported with security updates.

| Version | Supported |
| ------- | ------------------ |
| 5.1.x | :white_check_mark: |
| 5.0.x | :x: |
| 4.0.x | :white_check_mark: |
| < 4.0 | :x: |
Comment on lines +8 to +13

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

medium

This table appears to use example versions. Please replace them with the actual versions of this project that receive security support. If your project doesn't use this versioning scheme, please clarify what is and isn't supported.


## Reporting a Vulnerability

Use this section to tell people how to report a vulnerability.

Tell them where to go, how often they can expect to get an update on a
reported vulnerability, what to expect if the vulnerability is accepted or
declined, etc.
Comment on lines +17 to +21

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

medium

This section contains placeholder text and needs to be replaced with a concrete process for reporting vulnerabilities. Providing clear instructions is essential to ensure vulnerabilities are disclosed responsibly and privately. Please specify where to report issues (e.g., a security email address or GitHub's private vulnerability reporting) and what reporters can expect in terms of a response.

Suggested change
Use this section to tell people how to report a vulnerability.
Tell them where to go, how often they can expect to get an update on a
reported vulnerability, what to expect if the vulnerability is accepted or
declined, etc.
We take security vulnerabilities seriously. Please report any security issues you find via GitHub's private vulnerability reporting feature.
You can submit a report [here](https://github.com/GoogleCloudPlatform/applied-ai-engineering-samples/security/advisories/new).
We aim to acknowledge reports within 3 business days and will keep you informed of our progress. We appreciate your help in disclosing issues responsibly.