.github/SECURITY.md

This security policy applies to all public repositories under theOpenBoxes organization onGitHub.

We provide security updates for thelatest official release of OpenBoxes.

If you discover a vulnerability in any public project under theOpenBoxes organization,please report it responsibly tosupport@openboxes.com.

As an open-source project with limited resources, we will do our best to respond to and resolve security issuesin a timely manner.

We will attempt to acknowledge reports within 5–10 business days and provide a resolution within 90 days,depending on the severity and complexity. We will also make every effort to publicly disclose all securityvulnerabilities as soon as a security update (hotfix) is available.

Please do not disclose the issue publicly until we’ve had a chance to investigate and provide a fix.

There aren’t any published security advisories