tughra
Version:
The Tughra Library offers robust End-to-End Encryption (E2EE), ensuring that data remains private and secure from the point it leaves the sender to the moment it reaches the intended recipient. With E2EE, data is encrypted on the sender's device, transmit
34 lines (28 loc) • 1.62 kB
Markdown
<h1>Security Policy</h1>
<h2>Supported Versions</h2>
<p>We provide security updates for the latest major version of Tughra. Please keep your installation up-to-date to ensure the latest security enhancements.</p>
<table>
<tr>
<th>Version</th>
<th>Supported</th>
</tr>
<tr>
<td>1.0.0</td>
<td>✅</td>
</tr>
</table>
<h2>Reporting a Vulnerability</h2>
<p>If you discover a security vulnerability, please follow these steps:</p>
<ol>
<li><strong>Do Not Report Publicly</strong>: To protect users, please do not disclose vulnerabilities publicly.</li>
<li><strong>Contact Us Privately</strong>: Report vulnerabilities by emailing <a href="mailto:mohanad.hatip@gmail.com">us here</a>. Include as many details as possible, including steps to reproduce the issue.</li>
<li><strong>Expected Response</strong>: We aim to acknowledge receipt within 72 hours and work to investigate and resolve the issue as quickly as possible. We may request further information or clarification during the investigation process.</li>
</ol>
<h2>Security Updates</h2>
<p>We notify users of critical security updates by updating the repository and release notes. Always review release notes to stay informed of important changes and patches.</p>
<h2>General Security Guidance</h2>
<ul>
<li><strong>Stay Updated</strong>: Regularly update your Tughra library to the latest version.</li>
<li><strong>Use Best Practices</strong>: Avoid hardcoding sensitive data and follow encryption best practices in implementation.</li>
</ul>
<p>Thank you for helping us make Tughra a secure encryption library for everyone!</p>