Please report security vulnerabilities to [SECURITY_EMAIL] rather than using the public issue tracker.

We provide security updates for the following versions of our product:

• Latest stable release
• Previous stable release (for critical vulnerabilities only)

When we receive a security bug report, we will:

• Acknowledge receipt of the vulnerability report within [TIMEFRAME] hours
• Investigate the vulnerability with [TEAM_SIZE] security engineers
• Develop a patch to address the vulnerability within [PATCH_TIMEFRAME] days
• Release the patch in the next scheduled release or as an out-of-band update
• Notify affected users and customers

We prefer to receive communications in the following languages:

• English

Email: [SECURITY_EMAIL]

Response Time: We aim to respond within [RESPONSE_TIME] hours.