fed8b2eed7
Backend release / release (push) Waiting to run
Bandit Security Scan / bandit_scan (push) Waiting to run
Build and push multi-arch DocsGPT Docker image / build (linux/amd64, ubuntu-latest, amd64) (push) Waiting to run
Build and push multi-arch DocsGPT Docker image / build (linux/arm64, ubuntu-24.04-arm, arm64) (push) Waiting to run
Build and push multi-arch DocsGPT Docker image / manifest (push) Blocked by required conditions
Build and push DocsGPT FE Docker image for development / build (linux/amd64, ubuntu-latest, amd64) (push) Waiting to run
Build and push DocsGPT FE Docker image for development / build (linux/arm64, ubuntu-24.04-arm, arm64) (push) Waiting to run
Build and push DocsGPT FE Docker image for development / manifest (push) Blocked by required conditions
Python linting / ruff (push) Waiting to run
Run python tests with pytest / Run tests and count coverage (3.12) (push) Waiting to run
React Widget Build / build (push) Waiting to run
23 lines
663 B
Markdown
23 lines
663 B
Markdown
# Security Policy
|
|
|
|
## Supported Versions
|
|
|
|
Security patches target the latest release and the `main` branch. We recommend always running the most recent version.
|
|
|
|
## Reporting a Vulnerability
|
|
|
|
Preferred method: use GitHub's private vulnerability reporting flow:
|
|
https://github.com/arc53/DocsGPT/security
|
|
|
|
Then click **Report a vulnerability**.
|
|
|
|
|
|
Alternatively, email us at: security@arc53.com
|
|
|
|
We aim to acknowledge reports within 48 hours.
|
|
|
|
## Incident Handling
|
|
|
|
For the public incident response process, see [`INCIDENT_RESPONSE.md`](./.github/INCIDENT_RESPONSE.md). If you believe an active exploit is occurring, include **URGENT** in your report subject line.
|
|
|