This policy applies to Gittensor Vanguard repositories that do not define their own
SECURITY.md.
Please do not report security vulnerabilities through public GitHub issues or pull requests.
Instead, use GitHub's private vulnerability reporting on the affected repository: open its
Security tab and choose Report a vulnerability. If that is unavailable, email
[email protected].
Please include:
- a description of the issue and its impact,
- steps to reproduce (a minimal repro or command line is ideal),
- affected repository, files, or components, and
- any suggested remediation.
We aim to acknowledge reports within a few days and to keep you updated as we work on a fix. Please give us a reasonable window to remediate before any public disclosure.