MokoConsulting/MokoJoomCommunity
1
0
Fork 0
Code Issues 78 Pull Requests Packages Projects Releases 1 Wiki Activity
Files
development
MokoJoomCommunity/SECURITY.md
T
gitea-actions[bot] 73ad69c49c chore(version): auto-bump 01.00.18-dev [skip ci]
2026-06-04 14:23:08 +00:00

2.7 KiB
Raw Permalink Blame History

Security Policy

Purpose and Scope

This document defines the security vulnerability reporting, response, and disclosure policy for MokoJoomCommunity. It establishes the authoritative process for responsible disclosure, assessment, remediation, and communication of security issues.

Supported Versions

Security updates are provided for the following versions:

Version Supported
01.x.x
< 01.0

Only the current major version receives security updates. Users should upgrade to the latest supported version to receive security patches.

Reporting a Vulnerability

Where to Report

DO NOT create public issues for security vulnerabilities.

Report security vulnerabilities privately to:

Email: security@mokoconsulting.tech

Subject Line: [SECURITY] MokoJoomCommunity - Brief Description

What to Include

  1. Description: Clear explanation of the vulnerability
  2. Impact: Potential security impact and severity assessment
  3. Affected Versions: Which versions are vulnerable
  4. Reproduction Steps: Detailed steps to reproduce the issue
  5. Proof of Concept: Code, configuration, or demonstration (if applicable)
  6. Suggested Fix: Proposed remediation (if known)

Response Timeline

  • Initial Response: Within 3 business days
  • Assessment Complete: Within 7 business days
  • Fix Timeline: Depends on severity (Critical: 7 days, High: 14 days, Medium: 30 days, Low: 60 days)

Contact

Moko Consulting hello@mokoconsulting.tech

Reference in New Issue View Git Blame Copy Permalink