SECURITY.md

We release security updates for the latest major version of EngineScript. Please ensure you are running the latest version to receive security patches.

If you discover a security vulnerability in EngineScript, please follow these steps:

1. Do not open a public issue.
2. Email us atpeter@visistruct.com with details of the vulnerability.
3. Include:
   • A clear description of the issue
   • Steps to reproduce (if applicable)
   • Any relevant logs or screenshots
   • Your contact information for follow-up

We will acknowledge your report within 5 business days and work with you to resolve the issue promptly.

• Always keep your EngineScript installation and dependencies up to date.
• Use strong, unique passwords for all accounts.
• Restrict SSH and admin access to trusted IPs.
• Regularly back up your data.
• Review and apply security updates as soon as they are available.

We follow a responsible disclosure process. Once a vulnerability is confirmed and a fix is available, we will publish a security advisory and credit the reporter (unless anonymity is requested).

Thank you for helping keep EngineScript and its users safe!

There aren’t any published security advisories