github/endurain
1
1
Fork 0
mirror of https://github.com/joaovitoriasilva/endurain.git synced 2026-01-08 23:38:01 -05:00
Code Issues 45 Packages Projects Releases Wiki Activity
Files
35c01ebacc23ded3f2947ab89db8bb0bd1c8fe10
endurain/SECURITY.md
João Vitória Silva d265be67bc Add Docker secrets support for sensitive env vars 
Introduces secure reading of sensitive environment variables (DB_PASSWORD, SECRET_KEY, FERNET_KEY) via _FILE variants for Docker secrets. Updates backend to use new read_secret utility, adds validation for Fernet keys, and documents usage in advanced setup guide. Bumps version to 0.15.3 and provides a docker-compose secrets example.
2025-10-21 14:39:36 +01:00

726 B
Raw Blame History

Security Policy

Supported Versions

Version Supported
0.15.X
0.14.X and earlier

Reporting a Vulnerability

If you discover a security vulnerability, please follow these steps:

  1. Do not open a public issue;
  2. Send an email to joao@endurain.com with the details of the vulnerability;
  3. Include the following in your report:
  • Steps to reproduce the vulnerability;
  • Potential impact;
  • Any suggested fixes, if available.
  1. I will provide an acknowledgment when possible.

Please include as much information as possible to help me resolve the issue promptly.

Thank you for helping keep this project secure!

Reference in New Issue View Git Blame Copy Permalink