The security of our project, the Codeigniter 4 OAuth2 Library, is of utmost importance. This security policy outlines our commitment to maintaining the security of our project, the responsibilities of contributors, and the procedures for handling security vulnerabilities.
If you believe you have identified a security vulnerability in our project, please report it to us immediately. We take all security concerns seriously and will respond promptly to your report. You can report a security issue by contacting us through GitHub Issues or contact us.
We are committed to addressing and resolving any security issues in a responsible manner. To help protect our users and the wider community, we kindly request that you:
-
Do not disclose the issue publicly: Please do not share the details of the security issue publicly until it has been resolved.
-
Provide detailed information: When reporting a security issue, please provide as much information as possible to help us understand and address the problem.
-
Cooperate with the project maintainers: We may request your cooperation or further information regarding the issue.
As part of our commitment to security, we regularly review and update our project to address known security issues. We encourage all users to keep their installations up-to-date with the latest security patches and updates.
Our project incorporates the following security measures to protect against common security risks:
-
Code Review: Code contributions are thoroughly reviewed to identify and mitigate potential security vulnerabilities.
-
Authentication and Authorization: Access to sensitive features or data is controlled through strong authentication and authorization mechanisms.
-
Data Encryption: Sensitive data is encrypted to prevent unauthorized access.
-
Dependency Scanning: We regularly scan and update our project's dependencies to address known vulnerabilities.
If you have any questions, concerns, or need to report a security issue, please reach out to us through GitHub Issues or contact us.
We appreciate the efforts of the security community and individuals who report security issues to help us maintain the security of our project. Your responsible disclosure is vital in protecting our users and their data.