mirror of https://github.com/nucypher/pyUmbral.git
Add security section
MacLane Wilkison
parent
7a2a0a24c7
commit
cd1cf06c2d
18
README.rst
18
README.rst
|
|
@ -177,7 +177,19 @@ Support & Contribute
|
|||
- Issue Tracker: https://github.com/nucypher/pyUmbral/issues
|
||||
- Source Code: https://github.com/nucypher/pyUmbral
|
||||
|
||||
OFAC Sanctions Disclaimer
|
||||
=========================
|
||||
|
||||
By using this software, you hereby affirm you are not an individual or entity subject to economic sanctions administered by the U.S. Government or any other applicable authority, including but not limited to, sanctioned party lists administered by the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC), the U.S. State Department, and the U.S. Commerce Department. You further affirm you are not located in, or ordinarily resident in, any country, territory or region subject to comprehensive economic sanctions administered by OFAC, which are subject to change but currently include Cuba, Iran, North Korea, Syria and the Crimea region.
|
||||
Security
|
||||
========
|
||||
|
||||
If you identify vulnerabilities with _any_ nucypher code,
|
||||
please email security@nucypher.com with relevant information to your findings.
|
||||
We will work with researchers to coordinate vulnerability disclosure between our partners
|
||||
and users to ensure successful mitigation of vulnerabilities.
|
||||
|
||||
Throughout the reporting process,
|
||||
we expect researchers to honor an embargo period that may vary depending on the severity of the disclosure.
|
||||
This ensures that we have the opportunity to fix any issues, identify further issues (if any), and inform our users.
|
||||
|
||||
Sometimes vulnerabilities are of a more sensitive nature and require extra precautions.
|
||||
We are happy to work together to use a more secure medium, such as Signal.
|
||||
Email security@nucypher.com and we will coordinate a communication channel that we're both comfortable with.
|
||||
|
|
|
|||
|
|
@ -54,6 +54,23 @@ Support & Contribute
|
|||
- Source Code: https://github.com/nucypher/pyUmbral
|
||||
|
||||
|
||||
Security
|
||||
========
|
||||
|
||||
If you identify vulnerabilities with _any_ nucypher code,
|
||||
please email security@nucypher.com with relevant information to your findings.
|
||||
We will work with researchers to coordinate vulnerability disclosure between our partners
|
||||
and users to ensure successful mitigation of vulnerabilities.
|
||||
|
||||
Throughout the reporting process,
|
||||
we expect researchers to honor an embargo period that may vary depending on the severity of the disclosure.
|
||||
This ensures that we have the opportunity to fix any issues, identify further issues (if any), and inform our users.
|
||||
|
||||
Sometimes vulnerabilities are of a more sensitive nature and require extra precautions.
|
||||
We are happy to work together to use a more secure medium, such as Signal.
|
||||
Email security@nucypher.com and we will coordinate a communication channel that we're both comfortable with.
|
||||
|
||||
|
||||
Indices and Tables
|
||||
==================
|
||||
|
||||
|
|
|
|||
Loading…
Reference in New Issue