Sourced from here

This policy outlines the procedures for addressing and reporting security vulnerabilities in the Atlas Admin System.

The following table shows the versions of the Atlas Admin System that are currently supported with security updates. This policy ensures that users are aware of which versions are maintained and should be used in production environments.

If you discover a security vulnerability in the Atlas Admin System, please report it to us as soon as possible. Here's what you need to know:

• Where to Report: Submit all security vulnerability reports to our 📧 vulnerabilities page.
• Information to Include: Describe the vulnerability in detail, including steps to reproduce it, affected components, and potential impact. Attach screenshots or proof-of-concept code if possible.
• Response Time: We aim to acknowledge receipt of your report within 24 hours. You can expect an initial response within 48 hours.
• Follow-up Updates: We will provide weekly updates on the status of the reported vulnerability until it is resolved. If the report requires further investigation, we'll let you know.
• Confidentiality: We request that you do not disclose the vulnerability publicly until we have resolved it and released a patch. We will give you credit for discovering the vulnerability unless you request otherwise.

When we receive a security vulnerability report, we will:

1. Acknowledge receipt and evaluate the report's severity.
2. Investigate and confirm the issue.
3. Develop and test a patch if required.
4. Release a security patch to fix the issue.
5. Notify users of the fix through our GitHub repository and Discord 💬.

The security of the Atlas Admin System is a priority, and we appreciate your assistance in making our system safer. If you have any questions about this policy or other security concerns, please contact us on our Discord 💬.