Merge pull request #2421 from Aditya-DP/main

Create SECURITY.md
dell · Jan 27, 2025 · ba8ce9e · ba8ce9e
2 parents f31423a + afe61da
commit ba8ce9e
Showing 1 changed file with 25 additions and 0 deletions.
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,25 @@
+# Security Policy
+
+## Supported Versions
+
+Omnia provides security support for Omnia 1.7. All users utilizing older versions are highly recommended to upgrade to the latest version. Omnia 1.6.1 users are also highly recommended to upgrade to Omnia 1.7. The upgrade functionality allows users to upgrade from Omnia 1.6.1 to Omnia 1.7. The upgrade process ensures that all the security updates and fixes are applied to the system.
+
+
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 1.7     | :white_check_mark: |
+| 1.6.1   | :white_check_mark: |
+| 1.5.1   | :x:                |
+| 1.4.3.1 | :x:                |
+
+
+## Reporting a Vulnerability
+
+To report a vulnerability, users can raise an issue with vulnerability details. Please include a CVE (Common Vulnerabilities and Exposures) identifier if one has been assigned to the issue. This will help us track the issue and ensure it is addressed appropriately.
+
+If the vulnerability is accepted, the team will review the issue and make appropriate changes to fix the vulnerability. The fix can be expected in a minor patch release or will be included in the next major release.
+
+In case the vulnerability is deemed to be high risk, the team may also provide a temporary fix or workaround until the next release is available.
+
+However, if the vulnerability is deemed to be low risk or is not covered in the product security coverage scope, the issue may be denied.