Skip to content

Security: obsTR/cicd-cloud-security-checklist

Security

SECURITY.md

Security Policy

Reporting a Vulnerability

Please do not open public issues for suspected security vulnerabilities.

Report privately by emailing: security@onurkolay.com

Include:

  • Affected control or component
  • Steps to reproduce
  • Impact and severity estimate
  • Suggested remediation (if available)

Response Timeline

  • Initial triage response target: 3 business days
  • Status update target: 7 business days

Scope

This policy applies to repository content, examples, and checklist guidance.

There aren't any published security advisories