From: Sebastián Ramírez Date: Tue, 24 Aug 2021 13:18:33 +0000 (+0200) Subject: 🔒 Add security policy X-Git-Tag: 0.0.2~23 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=feaa5090e735b7275572abfd9baf1ae2fae4df08;p=thirdparty%2Ffastapi%2Fsqlmodel.git 🔒 Add security policy --- diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 00000000..5b8c622b --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,29 @@ +# Security Policy + +Security is very important for SQLModel and its community. 🔒 + +Learn more about it below. 👇 + +## Versions + +The latest versions of SQLModel are supported. + +You are encouraged to [write tests](https://sqlmodel.tiangolo.com/tutorial/fastapi/tests/) for your application and update your SQLModel version frequently after ensuring that your tests are passing. This way you will benefit from the latest features, bug fixes, and **security fixes**. + +## Reporting a Vulnerability + +If you think you found a vulnerability, and even if you are not sure about it, please report it right away by sending an email to: security@tiangolo.com. Please try to be as explicit as possible, describing all the steps and example code to reproduce the security issue. + +I (the author, [@tiangolo](https://twitter.com/tiangolo)) will review it thoroughly and get back to you. + +## Public Discussions + +Please restrain from publicly discussing a potential security vulnerability. 🙊 + +It's better to discuss privately and try to find a solution first, to limit the potential impact as much as possible. + +--- + +Thanks for your help! + +The SQLModel community and I thank you for that. 🙇