Rules for reporting security incidents
To report a security incident, please send all the required information listed below to: firstname.lastname@example.org
- Contact information: name, company, country
- Incident details:
- product/project name
- any special configuration needed to reproduce the problem
- detailed instructions for reproducing the problem
- proof of code misuse
- the impact of the problem, including how the attacker could exploit the problem
Lighting Beetle* will analyse the reported issue. Confirmation of the incident should take a maximum of 10 days. You will then receive our statement to your email.
If the incident is recognised, Lighting Beetle* will analyse the cause and determine the best solution to the problem.
Adhere to a period of 90 days before publicly detecting this vulnerability.