Security Disclosure Policy

Question

Security Disclosure Policy

feuer-medtronic opened this issue 8 months ago · 2 comments

Is there a security disclosure policy for tinyfsm?

If a vulnerability is found, is it posted anywhere?

Answer 1 · 2024-01-05T15:34:35.000Z

There is no special security policy for tinyfsm. In case a vulnerability would be found, I would enter it in Github ("Security" tab in this project).

I can confirm that there are no security vulnerabilities known to me (the developer and maintainer) for tinyfsm.

Answer 2 · 2024-01-05T15:50:10.000Z

Thank you. From: Axel Burri ***@***.***> Sent: Friday, January 5, 2024 10:35 AM To: digint/tinyfsm ***@***.***> Cc: Feuer, Mark ***@***.***>; Author ***@***.***> Subject: [EXTERNAL] Re: [digint/tinyfsm] Security Disclosure Policy (Issue #40) There is no special security policy for tinyfsm. In case a vulnerability would be found, I would enter it in Github ("Security" tab in this project). I can confirm that there are no security vulnerabilities known to me (the developer and maintainer) There is no special security policy for tinyfsm. In case a vulnerability would be found, I would enter it in Github ("Security" tab in this project). I can confirm that there are no security vulnerabilities known to me (the developer and maintainer) for tinyfsm. — Reply to this email directly, view it on GitHub<https://urldefense.com/v3/__https:/github.com/digint/tinyfsm/issues/40*issuecomment-1878859187__;Iw!!NFcUtLLUcw!TVSrryYgddHDOnvePv3t0OQUI6paCh39CZ_ZCsi2-hY-o32hvCoCfofDbnzituNe-pNfoXE-Ccx7eg6B7a46fBQT0A8$>, or unsubscribe<https://urldefense.com/v3/__https:/github.com/notifications/unsubscribe-auth/AV6JMWR6A6BRK4OQDW6FGDTYNAMRPAVCNFSM6AAAAABBNHD2MSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNZYHA2TSMJYG4__;!!NFcUtLLUcw!TVSrryYgddHDOnvePv3t0OQUI6paCh39CZ_ZCsi2-hY-o32hvCoCfofDbnzituNe-pNfoXE-Ccx7eg6B7a46nTBqN5Q$>. You are receiving this because you authored the thread.Message ID: ***@***.******@***.***>> [CONFIDENTIALITY AND PRIVACY NOTICE] Information transmitted by this email is proprietary to Medtronic and is intended for use only by the individual or entity to which it is addressed, and may contain information that is private, privileged, confidential or exempt from disclosure under applicable law. If you are not the intended recipient or it appears that this mail has been forwarded to you without proper authority, you are notified that any use or dissemination of this information in any manner is strictly prohibited. In such cases, please delete this mail from your records. To view this notice in other languages you can either select the following link or manually copy and paste the link into the address bar of a web browser: http://emaildisclaimer.medtronic.com