We are committed to ensuring the security of the STARTcloud/hcl_voltmx_go_provisioner project. Security updates and patches will typically be applied to the latest released version(s).

Please ensure you are using a recent and supported version of the provisioner to benefit from the latest security enhancements. Older versions may not receive security updates.

Check the releases page for the latest version.

We take security vulnerabilities seriously. If you discover a security issue, please help us by reporting it responsibly.

For non-sensitive issues or general bugs that might have security implications, please open an issue on our GitHub Issues page.

For sensitive security vulnerabilities that should not be publicly disclosed initially: Please report them privately. You can do this by creating a private vulnerability report on GitHub if enabled for the repository. Alternatively, please contact the maintainers directly at [INSERT SECURITY CONTACT EMAIL OR LINK TO PRIVATE REPORTING MECHANISM HERE].

Please include the following details in your report:

• A description of the vulnerability.
• Steps to reproduce the vulnerability.
• The version(s) of the provisioner affected.
• Any potential impact you've identified.

We will acknowledge receipt of your vulnerability report, work to validate it, and take appropriate action to address it. We appreciate your efforts in helping us maintain the security of this project. We will coordinate with you on public disclosure once a fix is available.