Skip to content

Security: AlexEsc302/haiku-readme

Security

SECURITY.md

πŸ” Security Policy

βœ… Supported Versions

The following versions of HaikuReadme are currently supported with security updates:

Version Supported
main βœ…
older ❌

πŸ› Reporting a Vulnerability

If you discover a security vulnerability in HaikuReadme, please report it responsibly:

  • 🚫 Do Not Open a Public Issue: To protect users, avoid disclosing vulnerabilities publicly.
  • πŸ“§ Email Us: Send details to chinmaysonawane57@gmail.com. Include:
    • A clear description of the vulnerability.
    • Steps to reproduce (if applicable).
    • Potential impact (e.g., data exposure, API misuse).

⏱️ Response Time: You can expect an acknowledgment within 48 hours. We’ll investigate and update you with progress on the resolution.


πŸ›‘οΈ Security Practices

  • πŸ”„ Dependencies: We regularly update dependencies in frontend/ (Vite + React) and backend/ (Express) to patch known vulnerabilities. See package.json for versions.
  • πŸ§ͺ Code Review: All pull requests go through code review to enforce secure coding standards.
  • ☁️ Vercel Deployment: The app is serverless on Vercel (live site), using Vercel’s secure infrastructure.

🀝 Responsible Disclosure

We encourage researchers to practice responsible disclosure:

  • ⏳ Allow us 30 days to address the issue before any public disclosure.
  • 🧼 Please do not exploit vulnerabilities beyond proof-of-concept testing.

Thank you for helping keep HaikuReadme secure! πŸ™

There aren't any published security advisories