Skip to content

Security: rudra496/site

Security

SECURITY.md

Security Policy

Reporting a Vulnerability

Found a security issue? Please report it responsibly.

How to Report

DO NOT create a public issue. Instead:

  1. Email: rudrasarker130@gmail.com
  2. Subject: Security Vulnerability Report
  3. Include:
    • Description of vulnerability
    • Steps to reproduce
    • Potential impact
    • Suggested fix (if any)

What Happens Next

Step Timeframe
Acknowledgment 24-48 hours
Investigation 3-7 days
Fix & Testing 7-14 days
Disclosure After fix deployed

Security Features

This site includes:

  • ✅ HTTPS enforced (GitHub Pages)
  • ✅ No sensitive data exposure
  • ✅ Form spam protection (honeypot)
  • ✅ Secure external links (rel="noopener noreferrer")

Best Practices

When contributing or forking:

  • ❌ Never commit .env files
  • ✅ Use environment variables
  • ✅ Keep dependencies updated
  • ✅ Validate user inputs

Contact

Security: rudrasarker130@gmail.com GitHub: @rudra496

Thanks for keeping things secure! 🔒

There aren’t any published security advisories