AtHeartEngineer/linea-monorepo
1
0
Fork 0
mirror of https://github.com/vacp2p/linea-monorepo.git synced 2026-01-09 15:38:06 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
802851970d4f80d0f17bc7ede9e86cec5c977481
linea-monorepo/docs/security.md
Julien Marchand a001342170 chore: Initial commit 
Co-authored-by: Franklin Delehelle <franklin.delehelle@odena.eu>
Co-authored-by: Alexandre Belling <alexandrebelling8@gmail.com>
Co-authored-by: Pedro Novais <jpvnovais@gmail.com>
Co-authored-by: Roman Vaseev <4833306+Filter94@users.noreply.github.com>
Co-authored-by: Bradley Bown <bradbown@googlemail.com>
Co-authored-by: Victorien Gauch <85494462+VGau@users.noreply.github.com>
Co-authored-by: Nikolai Golub <nikolai.golub@consensys.net>
Co-authored-by: The Dark Jester <thedarkjester@users.noreply.github.com>
Co-authored-by: jonesho <81145364+jonesho@users.noreply.github.com>
Co-authored-by: Gaurav Ahuja <gauravahuja9@gmail.com>
Co-authored-by: Azam Soleimanian <49027816+Soleimani193@users.noreply.github.com>
Co-authored-by: Andrei A <andrei.alexandru@consensys.net>
Co-authored-by: Arijit Dutta <37040536+arijitdutta67@users.noreply.github.com>
Co-authored-by: Gautam Botrel <gautam.botrel@gmail.com>
Co-authored-by: Ivo Kubjas <ivo.kubjas@consensys.net>
Co-authored-by: gusiri <dreamerty@postech.ac.kr>
Co-authored-by: FlorianHuc <florian.huc@gmail.com>
Co-authored-by: Arya Tabaie <arya.pourtabatabaie@gmail.com>
Co-authored-by: Julink <julien.fontanel@consensys.net>
Co-authored-by: Bogdan Ursu <bogdanursuoffice@gmail.com>
Co-authored-by: Jakub Trąd <jakubtrad@gmail.com>
Co-authored-by: Alessandro Sforzin <alessandro.sforzin@consensys.net>
Co-authored-by: Olivier Bégassat <olivier.begassat.cours@gmail.com>
Co-authored-by: Steve Huang <97596526+stevehuangc7s@users.noreply.github.com>
Co-authored-by: bkolad <blazejkolad@gmail.com>
Co-authored-by: fadyabuhatoum1 <139905934+fadyabuhatoum1@users.noreply.github.com>
Co-authored-by: Blas Rodriguez Irizar <rodrigblas@gmail.com>
Co-authored-by: Eduardo Andrade <eduardofandrade@gmail.com>
Co-authored-by: Ivo Kubjas <tsimmm@gmail.com>
Co-authored-by: Ludcour <ludovic.courcelas@consensys.net>
Co-authored-by: m4sterbunny <harrie.bickle@consensys.net>
Co-authored-by: Alex Panayi <145478258+alexandrospanayi@users.noreply.github.com>
Co-authored-by: Diana Borbe - ConsenSys <diana.borbe@consensys.net>
Co-authored-by: ThomasPiellard <thomas.piellard@gmail.com>
2024-07-31 18:17:20 +02:00

43 lines
2.2 KiB
Markdown
Raw Blame History

# Security Policy
We consider the security of our systems a top priority. But no matter how much effort we put into system security, there can still be vulnerabilities present.
## Reporting Security Issues
**DO NOT** report security vulnerabilities through public GitHub issues. Instead, please use one of the following means of communications to report it to us:
1. Report through our Linea [Immunefi program](https://immunefi.com/bounty/linea/) or
2. Email us at [security-report@linea.build](mailto:security-report@linea.build) with details about the security issue.
Please provide the following details in your email:
- Description of the vulnerability
- Steps to reproduce the vulnerability
- Versions affected
- Any potential mitigations or workarounds you've identified
## Responsible Disclosure Security Policy
A responsible disclosure policy helps protect users of the project from publicly disclosed security vulnerabilities without a fix by employing a process where vulnerabilities are first triaged in a private manner, and only publicly disclosed after a reasonable time period that allows patching the vulnerability and provides an upgrade path for users.
When contacting us directly via email, we will do our best efforts to respond in a reasonable time to resolve the issue. When contacting a security program their disclosure policy will provide details on time-frame, processes and paid bounties.
We kindly ask you to refrain from malicious acts that put our users, the project, or any of the project's team members at risk.
### Risk Disclosures
Linea risk disclosures can be found at:
- Linea docs - [https://docs.linea.build/risk-disclosures](https://docs.linea.build/risk-disclosures)
- Linea Immunefi program - [https://immunefi.com/bounty/linea/](https://immunefi.com/bounty/linea/)
## Scope
This security policy applies to the code, libraries, and configurations within this repository. This includes any code or components that are part of the repository or its dependencies.
## Previous Audits
- Plonk Verifier https://consensys.io/diligence/audits/private/re9fdlhtjn7jfr/
- Message Service & Rollup: https://consensys.io/diligence/audits/private/zxi4edywq3d1zr/
- Canonical Token Bridge: https://consensys.io/diligence/audits/private/nzqt1bai7j8ryf/
Reference in New Issue View Git Blame Copy Permalink