Skip to content

Commit e14c647

Browse files
committed
docs(repo): add security vulnerability disclosure policy
1 parent 00fea9c commit e14c647

1 file changed

Lines changed: 27 additions & 0 deletions

File tree

SECURITY.md

Lines changed: 27 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,27 @@
1+
# Security Policy
2+
3+
## Supported versions
4+
5+
| Version | Supported |
6+
|---------|-----------|
7+
| latest ||
8+
9+
## Reporting a vulnerability
10+
11+
**Please do not open a public GitHub issue for security vulnerabilities.**
12+
13+
If you discover a security issue in Cortex, please disclose it responsibly by emailing:
14+
15+
**security@cortex-edr.com**
16+
17+
Include:
18+
- A description of the vulnerability
19+
- Steps to reproduce
20+
- Potential impact
21+
- Any suggested fix (optional)
22+
23+
You will receive a response within 48 hours. We will work with you to understand and resolve the issue before any public disclosure.
24+
25+
## Scope
26+
27+
This policy applies to the Cortex CLI codebase at `github.com/hamza-hafeez82/cortex`. It does not cover third-party dependencies — please report those upstream.

0 commit comments

Comments
 (0)