Skip to content

Security: Second-Origin/PARTHA

SECURITY.md

Security Policy

Supported Versions

PARTHA is currently in active development.

Security fixes are provided for the latest development branch (dev) and the latest stable release on main.

Version Supported
Latest dev
Latest release
Older releases

Reporting a Vulnerability

If you discover a security vulnerability in PARTHA, please do not create a public GitHub issue.

Instead, report it privately by emailing:

parthrohit60@gmail.com

Include, where possible:

  • A description of the vulnerability
  • Steps to reproduce
  • Potential impact
  • Suggested remediation (if known)

Response Process

We aim to:

  • Acknowledge reports within 72 hours
  • Investigate and validate the issue
  • Develop and test a fix
  • Publish a security patch when appropriate
  • Credit the reporter (if they wish)

Security Practices

PARTHA uses several automated security measures, including:

  • GitHub CodeQL static analysis
  • Dependabot dependency monitoring
  • GitHub Dependabot security advisories
  • Required pull request reviews
  • Protected branches
  • Continuous Integration validation

Security is considered throughout development, but no software is guaranteed to be free of vulnerabilities. Responsible disclosure is appreciated.

There aren't any published security advisories