If you discover a security vulnerability within our project, please send an email to sniphermarube@gmail.com. We take all security vulnerabilities seriously and will respond to your report promptly.
| Version | Supported |
|---|---|
| 1.0.x | ✅ |
| 0.9.x | ❌ |
| 0.8.x | ❌ |
| < 0.8 | ❌ |
We follow industry best practices to ensure the security of our project. Some of the measures we have implemented include:
- Regular code reviews
- Secure coding guidelines
- Input validation and sanitization
- Authentication and authorization mechanisms
- Encryption of sensitive data
- Regular security updates and patches
We strive to promptly address any security vulnerabilities that are reported to us. When a vulnerability is confirmed, we will:
- Investigate the issue
- Develop and test a fix
- Release a security update as soon as possible
- Notify users about the vulnerability and the available fix
We kindly request that you follow responsible disclosure practices when reporting security vulnerabilities to us. This includes:
- Providing us with sufficient details to reproduce and validate the vulnerability
- Allowing us a reasonable amount of time to address the issue before disclosing it to others
- Not exploiting the vulnerability or causing any harm to our systems or users
We will acknowledge your report within 48 hours of receiving it.
This security policy applies to vulnerabilities discovered in (Django Ecommerce).
Please note that this policy does not cover security vulnerabilities in third-party dependencies. If you believe a vulnerability exists in a third-party dependency used by this project, please follow responsible disclosure practices and report it directly to the maintainers of the affected project.
If you have any questions or concerns regarding the security of our project, please contact us at sniphermarube@gmail.com.