Skip to content

Add SECURITY.md with vulnerability reporting guidelines #120

Open
Open
Add SECURITY.md with vulnerability reporting guidelines#120
Labels
documentationImprovements or additions to documentationgood first issueGood for newcomers
@vgpastor

Description

@vgpastor
vgpastor
opened on Mar 13, 2026

Context

We handle sensitive data (AED locations used by emergency services) and need a clear process for reporting security vulnerabilities.

What needs to happen

  • Add a SECURITY.md to the repository root
  • Include: supported versions, how to report a vulnerability (email, not public issue), expected response time, scope
  • Contact: info@globalemergency.online

Acceptance criteria

  • SECURITY.md added to repo root
  • Clear reporting instructions
  • Scope of what counts as a security issue defined

Metadata

Metadata

Assignees

No one assigned

    Labels

    documentationImprovements or additions to documentationgood first issueGood for newcomers

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions