Mindoff Dataport Security Policy
Reports often carry sensitive business data, so security matters here. Responsible disclosure of any vulnerability is truly appreciated đ.
Only the latest version of the mindoff-dataport package is actively supported, so it helps if you can confirm the issue on the newest version first.
Reporting a Vulnerability¶
Email us at joe@mindoff.work. If you're unsure whether something is a security issue, it's still OK to reach out.
Include whatever you have, ideally:
- What you found and why it matters
- How to reproduce it (steps or a small proof-of-concept)
- Expected impact
- Environment or dependency details
Please do not open a public issue or discussion while we're investigating â it's better for the community to work toward a fix privately first.
If it's a confirmed vulnerability, you'll get credit in the docs unless you'd prefer to stay low-key.
đ Thanks for helping keep mindoff-dataport safe.