| Version | Supported | End of Support |
|---|---|---|
| 1.0.x | ✅ Active | - |
| < 1.0 | ❌ N/A | - |
We take the security of SignLanguage Dataset Hub seriously. If you discover a security vulnerability, please report it responsibly.
Do NOT create a public GitHub issue for security vulnerabilities.
Instead, please:
- Email: Send details to rudrasarker125@gmail.com with subject "Security Vulnerability Report"
- GitHub Security: Use GitHub's private vulnerability reporting feature at Security Advisories
Please include the following information:
- Type of vulnerability (e.g., data exposure, injection, etc.)
- Affected component (e.g., data loader, download script)
- Steps to reproduce the vulnerability
- Potential impact of the vulnerability
- Suggested fix if you have one
| Stage | Timeline |
|---|---|
| Initial Response | Within 48 hours |
| Vulnerability Assessment | Within 5 business days |
| Fix Development | Depends on severity |
| Disclosure | After fix is released |
- We follow responsible disclosure
- Vulnerabilities will be disclosed after a fix is available
- We will credit you in the security advisory (unless you prefer to remain anonymous)
When using datasets from this hub:
- Verify data sources - Only download from official sources linked in our documentation
- Check file integrity - Use provided SHA256 checksums when available
- Scan for malware - Scan downloaded files with antivirus software
- Review licenses - Ensure compliance with dataset licenses
This hub contains:
- ✅ Anonymized sensor data - No personally identifiable information
- ✅ Synthetic sample data - Generated for demonstration
⚠️ Links to external datasets - Each has its own privacy policy
We do NOT collect or store:
- User data or analytics
- Download history
- Personal information
When working with sign language data:
- Respect participant privacy - Do not attempt to identify individuals
- Follow ethical guidelines - Adhere to your institution's IRB requirements
- Proper citation - Credit dataset creators appropriately
- License compliance - Use data only as permitted by the license
| Issue | Status | Affected Versions | Fix |
|---|---|---|---|
| None reported | - | - | - |
# Create isolated virtual environment
python -m venv venv
source venv/bin/activate
# Install from official PyPI (when available)
pip install signlang-datasets
# Or from verified GitHub source
pip install git+https://github.com/rudra496/SignLanguage-Dataset-Hub.git# Check for known vulnerabilities in dependencies
pip install safety
safety check
# Keep dependencies updated
pip install --upgrade pip
pip list --outdated# Always verify checksums
import hashlib
def verify_checksum(file_path, expected_hash):
with open(file_path, 'rb') as f:
file_hash = hashlib.sha256(f.read()).hexdigest()
return file_hash == expected_hashFor security concerns:
- Security Email: rudrasarker125@gmail.com
- General Issues: GitHub Issues
- Maintainer: @rudra496
Last updated: March 2026