This document outlines security procedures and general policies for an open-source project.
The open-source repository and project are intended to be publically accessible to Rolls-Royce employees, the public, and approved partners.
The project team and community take all security bugs in this project seriously. We appreciate your efforts around bug fix recommendations and the responsible disclosure and will make every effort to acknowledge your contributions.
Report security bugs by emailing the lead maintainer at [email protected].
The lead maintainer will acknowledge your email within 48 hours and may ask for additional information or guidance.
Report security bugs in third-party modules to the person or team maintaining the module.