We appreciate your help in maintaining the security of our projects. Please follow the guidelines below for reporting vulnerabilities or security issues.
Use this section to tell people about which versions of your project are currently being supported with security updates.
| Version | Supported |
|---|---|
| < 1.0 | ❌ |
| > 1.x | ✅ |
If you discover a vulnerability, please follow these steps:
- Do not disclose the details publicly or on social media.
- Send an email with a detailed description of the vulnerability to: security@thefluentspanishhouse.com
- Include information on how to reproduce the issue, the environment used, and any other details that could help us identify the root of the problem.
This policy applies to all related repositories and projects, including both client-side and server-side applications.
- We will acknowledge receipt of your report within 5 business days.
- If the reported vulnerability is confirmed, we will work to resolve it as quickly and safely as possible.
- We will notify you once the issue has been fixed or if additional information is needed.
This security policy does not cover unauthorized penetration tests or testing performed without explicit permission.
- Contact Information: Detailed contact options (e.g., different email addresses, phone numbers) for reporting security issues.
- Response Timeline: More detailed information about what to expect in terms of response times and resolution steps.
- Policy Scope and Limitations: Clear definitions of which parts of the system are covered and any exceptions.
- Acknowledgements: Recognition for contributors who report vulnerabilities.
- Security Best Practices: Guidelines for users and contributors on maintaining security.
- Legal Safe Harbor: Clarification on legal protections for researchers following the policy guidelines.
Thank you for contributing to the security of our projects!