orcaslicer/SECURITY.md

# Security Policy

At OrcaSlicer, we are committed to maintaining the security of our ecosystem. Our policy is to ensure that we do not introduce vulnerabilities and that any security issues are addressed promptly and responsibly. We appreciate your help in improving the security of OrcaSlicer and thank you for your responsible disclosure.
Reporting Security Bugs

## To report a security bug, please follow these guidelines:

  * Email Security Bugs:
        Send an email to the lead maintainer at softfeverever@gmail.com.
        Include the word "SECURITY" in the subject line of your email.

  * Response Times:
        The lead maintainer will acknowledge receipt of your email within one week (7 days).
        A detailed response will follow within 48 hours, outlining the next steps for handling your report.
        After the initial reply, the security team will keep you informed about the progress toward a fix and any announcements.

  * Information and Collaboration:
        We may request additional information or guidance as we work on addressing the issue.

  * Handling the Report:
        OrcaSlicer will confirm the problem and determine the affected versions.
        We will audit the code to find any similar issues and prepare fixes for all releases still under maintenance.
        Fixes will be released as quickly as possible.

  * Third-Party Modules:
        Report security issues in third-party modules to the respective maintainer of those modules.

## Security Disclosure Guidelines

When disclosing a vulnerability, please follow these steps to ensure your report is clear and actionable:

  * Provide Detailed Information:
        Scope: Clearly define the scope of the vulnerability.
        Potential Impact: Let us know who could be affected by this exploit.
        Reproduction Steps: Document detailed steps to reproduce the vulnerability.

    Reference OWASP Guidelines:
        Follow the <a href="https://cheatsheetseries.owasp.org/cheatsheets/Vulnerability_Disclosure_Cheat_Sheet.html">OWASP Vulnerability Disclosure Cheat Sheet</a> for best practices in vulnerability disclosure.

## Security Recommendations

To enhance security when using OrcaSlicer, we recommend following these steps:

  * SEE SOMETHING: If you notice anything suspicious or have concerns, please report it.
  * SAY SOMETHING: If you have any doubts or need assistance, do not hesitate to contact us.

### Thank you for your commitment to the security of OrcaSlicer. Your efforts help us maintain a safe and reliable ecosystem.
Improvementes in readme and security docs (#6730) * Delete Readme.txt Not in use * Update SECURITY.md Formatted and little changes made * Update README.md Improved format and texts, insert image at the top 2024-09-11 14:23:15 +00:00			`# Security Policy`
Create SECURITY.md (#3696) 2024-01-23 11:20:08 +00:00
Improvementes in readme and security docs (#6730) * Delete Readme.txt Not in use * Update SECURITY.md Formatted and little changes made * Update README.md Improved format and texts, insert image at the top 2024-09-11 14:23:15 +00:00			`At OrcaSlicer, we are committed to maintaining the security of our ecosystem. Our policy is to ensure that we do not introduce vulnerabilities and that any security issues are addressed promptly and responsibly. We appreciate your help in improving the security of OrcaSlicer and thank you for your responsible disclosure.`
			`Reporting Security Bugs`
Create SECURITY.md (#3696) 2024-01-23 11:20:08 +00:00
Improvementes in readme and security docs (#6730) * Delete Readme.txt Not in use * Update SECURITY.md Formatted and little changes made * Update README.md Improved format and texts, insert image at the top 2024-09-11 14:23:15 +00:00			`## To report a security bug, please follow these guidelines:`
Create SECURITY.md (#3696) 2024-01-23 11:20:08 +00:00
Improvementes in readme and security docs (#6730) * Delete Readme.txt Not in use * Update SECURITY.md Formatted and little changes made * Update README.md Improved format and texts, insert image at the top 2024-09-11 14:23:15 +00:00			`* Email Security Bugs:`
			`Send an email to the lead maintainer at softfeverever@gmail.com.`
			`Include the word "SECURITY" in the subject line of your email.`
Create SECURITY.md (#3696) 2024-01-23 11:20:08 +00:00
Improvementes in readme and security docs (#6730) * Delete Readme.txt Not in use * Update SECURITY.md Formatted and little changes made * Update README.md Improved format and texts, insert image at the top 2024-09-11 14:23:15 +00:00			`* Response Times:`
			`The lead maintainer will acknowledge receipt of your email within one week (7 days).`
			`A detailed response will follow within 48 hours, outlining the next steps for handling your report.`
			`After the initial reply, the security team will keep you informed about the progress toward a fix and any announcements.`
Create SECURITY.md (#3696) 2024-01-23 11:20:08 +00:00
Improvementes in readme and security docs (#6730) * Delete Readme.txt Not in use * Update SECURITY.md Formatted and little changes made * Update README.md Improved format and texts, insert image at the top 2024-09-11 14:23:15 +00:00			`* Information and Collaboration:`
			`We may request additional information or guidance as we work on addressing the issue.`
Create SECURITY.md (#3696) 2024-01-23 11:20:08 +00:00
Improvementes in readme and security docs (#6730) * Delete Readme.txt Not in use * Update SECURITY.md Formatted and little changes made * Update README.md Improved format and texts, insert image at the top 2024-09-11 14:23:15 +00:00			`* Handling the Report:`
			`OrcaSlicer will confirm the problem and determine the affected versions.`
			`We will audit the code to find any similar issues and prepare fixes for all releases still under maintenance.`
			`Fixes will be released as quickly as possible.`
Create SECURITY.md (#3696) 2024-01-23 11:20:08 +00:00
Improvementes in readme and security docs (#6730) * Delete Readme.txt Not in use * Update SECURITY.md Formatted and little changes made * Update README.md Improved format and texts, insert image at the top 2024-09-11 14:23:15 +00:00			`* Third-Party Modules:`
			`Report security issues in third-party modules to the respective maintainer of those modules.`
Create SECURITY.md (#3696) 2024-01-23 11:20:08 +00:00
Improvementes in readme and security docs (#6730) * Delete Readme.txt Not in use * Update SECURITY.md Formatted and little changes made * Update README.md Improved format and texts, insert image at the top 2024-09-11 14:23:15 +00:00			`## Security Disclosure Guidelines`

			`When disclosing a vulnerability, please follow these steps to ensure your report is clear and actionable:`

			`* Provide Detailed Information:`
			`Scope: Clearly define the scope of the vulnerability.`
			`Potential Impact: Let us know who could be affected by this exploit.`
			`Reproduction Steps: Document detailed steps to reproduce the vulnerability.`

			`Reference OWASP Guidelines:`
			`Follow the <a href="https://cheatsheetseries.owasp.org/cheatsheets/Vulnerability_Disclosure_Cheat_Sheet.html">OWASP Vulnerability Disclosure Cheat Sheet</a> for best practices in vulnerability disclosure.`

			`## Security Recommendations`

			`To enhance security when using OrcaSlicer, we recommend following these steps:`

			`* SEE SOMETHING: If you notice anything suspicious or have concerns, please report it.`
			`* SAY SOMETHING: If you have any doubts or need assistance, do not hesitate to contact us.`

			`### Thank you for your commitment to the security of OrcaSlicer. Your efforts help us maintain a safe and reliable ecosystem.`