Skip to content

Security: arxmlbots/TraceLab

Security

SECURITY.md

Security Policy

Thank you for helping keep TraceLab secure.


Supported Versions

TraceLab is currently in Pre-Alpha development.

Security fixes will be applied to the latest development version whenever possible.

Older versions are not guaranteed to receive security updates.


Reporting a Vulnerability

If you discover a security vulnerability, please do not create a public GitHub Issue, as it may expose users to unnecessary risks.

Instead, please contact the project maintainers privately.

At the moment, private reports can be made through GitHub Discussions or another private communication method when available.

A dedicated security email may be added in the future.


What to Include

Please include as much information as possible:

  • Description of the vulnerability
  • Steps to reproduce
  • Affected version
  • Expected behavior
  • Actual behavior
  • Screenshots or proof of concept (if applicable)

Response Policy

We will try to:

  • Acknowledge reports as soon as possible.
  • Investigate reported vulnerabilities.
  • Fix confirmed security issues.
  • Credit reporters when appropriate (unless they prefer to remain anonymous).

Scope

This policy applies to:

  • Android application
  • Source code
  • Build system
  • Project infrastructure

Thank you for helping make TraceLab safer for everyone. ❤️

There aren't any published security advisories