4b6817381b
CI (OpenClaw E2E) / openclaw test (push) Has been cancelled
CI / coverage-report (push) Has been cancelled
CI / test-kubernetes (push) Has been cancelled
CI / should-run-thorough (push) Has been cancelled
CI / test-thorough (cloudwatch-demo) (push) Has been cancelled
CI / test-thorough (flink-ecs) (push) Has been cancelled
CI / test-thorough (upstream-lambda) (push) Has been cancelled
CI / test-thorough (prefect-ecs-fargate) (push) Has been cancelled
Release / build-binaries (zip, opensre.exe, onefile, windows-latest, windows-x64) (push) Has been cancelled
Benchmark image — build + push to ECR (any adapter) / build + push (push) Has been cancelled
CI / quality (ubuntu-latest) (push) Has been cancelled
CI / test (tools-runtime) (push) Has been cancelled
CI / test (e2e-general) (push) Has been cancelled
CI / test (cli-runtime) (push) Has been cancelled
CI / test (e2e-provider-and-openclaw) (push) Has been cancelled
CI / test (integrations-and-misc) (push) Has been cancelled
Release / verify (push) Has been cancelled
Release / build-python-dist (push) Has been cancelled
Release / build-binaries (tar.gz, opensre, onedir, macos-15-intel, darwin-x64) (push) Has been cancelled
Release / build-binaries (tar.gz, opensre, onedir, macos-latest, darwin-arm64) (push) Has been cancelled
Release / build-binaries (tar.gz, opensre, onedir, ubuntu-22.04, linux-x64) (push) Has been cancelled
Release / publish-release (push) Has been cancelled
Release / publish-main-release (push) Has been cancelled
Interactive Shell Live (PR + post-merge) / turn-checks (no-LLM) (push) Has been cancelled
CodeQL / Analyze (python) (push) Has been cancelled
Interactive Shell Live (PR + post-merge) / turn-live shard ${{ matrix.shard_index }} (push) Has been cancelled
Release / prepare (push) Has been cancelled
Release / build-binaries (tar.gz, opensre, onedir, ubuntu-22.04-arm, linux-arm64) (push) Has been cancelled
Synthetic Deterministic Tests / Synthetic offline (deterministic) (push) Has been cancelled
40 lines
1.1 KiB
Markdown
40 lines
1.1 KiB
Markdown
# Security Policy
|
||
|
||
OpenSRE is designed for security-sensitive compute environments. We prioritize transparency, least privilege, and minimizing data exposure.
|
||
|
||
## Trust Center
|
||
|
||
For our security posture, architecture overview, compliance information, and subprocessors, see:
|
||
|
||
https://trust.tracer.cloud/
|
||
|
||
## Reporting a Vulnerability
|
||
|
||
If you believe you’ve found a security vulnerability in Tracer, please report it privately.
|
||
|
||
**Please do not open a public GitHub issue** for security vulnerabilities.
|
||
|
||
Email: support@opensre.com
|
||
|
||
### What to include
|
||
|
||
To help us triage quickly, please include:
|
||
|
||
- a clear description of the issue
|
||
- affected component(s) and version(s)
|
||
- steps to reproduce (or a minimal proof-of-concept)
|
||
- observed / expected behavior
|
||
- impact assessment (what an attacker could achieve)
|
||
|
||
### Coordinated disclosure
|
||
|
||
Please avoid public disclosure until we’ve had a reasonable opportunity to investigate and remediate. We’ll coordinate timelines with you when appropriate.
|
||
|
||
## Non-security Support
|
||
|
||
If you need product help or documentation, use:
|
||
|
||
- Docs: https://opensre.com/docs
|
||
- Book a demo: https://opensre.com
|
||
- Email: support@opensre.com
|