NAME

SECURITY - security policy for Developer Dashboard releases

DESCRIPTION

This file ships the release-visible security policy for Developer Dashboard so the tarball carries a machine-installable security contact and reporting process even when Markdown source files are excluded from the built distribution.

REPORTING A VULNERABILITY

Report security issues privately to:

security@manif3station.local
https://github.com/manif3station/developer-dashboard/security/advisories

Include the affected version, a short reproduction, the expected impact, and any suggested mitigation. Do not open a public issue for an unpatched security problem.

COORDINATED DISCLOSURE EXPECTATIONS

We aim to acknowledge a vulnerability report within 3 business days, provide a status update within 14 days, and work toward a coordinated disclosure window of 90 days unless the impact or the fix timeline requires a different schedule.

If a report is not actually a vulnerability, or if the impact turns out to be different after triage, we will still reply with that outcome so the reporter is not left guessing about the disclosure status.

SUPPORTED RELEASES

Security fixes are applied to the latest active release line in this repository.

ADDITIONAL CONTEXT

The runtime-facing security baseline and verification notes also live in the source tree security documentation, including the dashboard doctor command used to audit and repair owner-only runtime permissions.

To install Developer::Dashboard, copy and paste the appropriate command in to your terminal.

cpanm

cpanm Developer::Dashboard

CPAN shell

perl -MCPAN -e shell
install Developer::Dashboard

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	Go to GitHub issues (only if GitHub is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)