Security Policy

Reporting A Vulnerability

Report security issues privately to:

security@manif3station.local
https://github.com/manif3station/developer-dashboard/security/advisories

Include:

the affected version
a short reproduction
the expected impact
any suggested mitigation

Do not open a public issue for an unpatched security problem.

Coordinated Disclosure Expectations

We aim to acknowledge a vulnerability report within 3 business days, provide a status update within 14 days, and work toward a coordinated disclosure window of 90 days unless the impact or the fix timeline requires a different schedule.

If a report is not actually a vulnerability, or if the impact turns out to be different after triage, we will still reply with that outcome so the reporter is not left guessing about the disclosure status.

Supported Releases

Security fixes are applied to the latest active release line in this repository.

Additional Context

The runtime-facing security baseline and verification notes remain documented in doc/security.md, including the dashboard doctor command used to audit and repair owner-only runtime permissions.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	Go to GitHub issues (only if GitHub is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)

Security Policy

Reporting A Vulnerability

Coordinated Disclosure Expectations

Supported Releases

Additional Context

Keyboard Shortcuts