1.6 KiB
1.6 KiB
Security Policy
Supported Versions
| Component | Version | Supported |
|---|---|---|
| IQ.Pilot | latest | TRUE |
| konn3kt | latest | TRUE |
Scope
This security policy covers the following components, but applies to all IQ.Lvbs software:
- IQ.Pilot
- konn3kt
Reporting a Vulnerability
If you discover a security vulnerability in IQ.Pilot or konn3kt, please report it responsibly, abuse is against the terms of service for IQ.Lvbs software.
Email: security@iqlvbs.com
Please include:
- A description of the vulnerability and its impact, and potential impact
- Steps to reproduce the issue
- Affected component(s)
- Any relevant logs, screenshots, or proof of concept code that can assist with reproduction.
Response Timeline
- Acknowledgment: Within 168 hours of receipt
- Initial Assessment: Within 1-14 days
- Resolution Target: Depends on severity; critical issues are prioritized immediately
Responsible Disclosure
We ask that you:
- Allow reasonable time for us to investigate and address the issue.
- Avoid accessing or modifying other users' data, this is against IQ.Lvbs policy, and illegal in many jurisdictions.
- Do not exploit vulnerabilities beyond what is necessary to demonstrate the issue.
Out of Scope
- Issues in third-party dependencies unless the vulnerability is triggered by our specific usage
Recognition
We appreciate and recognize security researchers who help keep IQ.Lvbs software safe. With your permission, we will credit you in our release notes when a reported vulnerability is fixed.
- IQ.Lvbs, a part of Project Teal Lvbs Inc ©️