If you discover a vulnerability in FlowPay, please report it responsibly. We are committed to ensuring the security of our users, and we appreciate your help in identifying and addressing potential security issues.
- Do not disclose the vulnerability publicly until it has been addressed.
- Email your report to the repository maintainer at pankajams1234@gmail.com.
- Provide clear details about the vulnerability, including:
- Steps to reproduce the issue.
- The impact of the vulnerability.
- Any other relevant information that will help us understand and fix the issue.
- Initial Report: We will acknowledge receipt of the report within 48 hours.
- Assessment: We will evaluate the reported vulnerability and provide a fix or mitigation within a reasonable timeframe.
- Public Disclosure: After fixing the issue, we will disclose the vulnerability and the fix in our changelog and security updates.
We support the following versions of FlowPay with security updates:
- Latest stable release
- Previous stable release (if applicable)
We will release security patches for vulnerabilities in supported versions as soon as they are available. To stay updated on security releases, please subscribe to our repository's notifications.
We encourage all users and contributors to follow security best practices when developing and using FlowPay:
- Use secure authentication methods (e.g., multi-factor authentication).
- Keep dependencies up-to-date to mitigate known vulnerabilities.
- Regularly audit your code for security vulnerabilities.
For additional guidance on securing your application, you can refer to the OWASP top 10 security risks and implement necessary safeguards.
Thank you for helping us keep FlowPay secure!