halo/SECURITY.md

# Security Policy

## Supported Versions

Halo currently supports the versions listed below, where as:

- :white_check_mark: indicates an active development roadmap, is therefore maintaining, and **will** receive Security
  Vulnerability Report.
- :x: indicates such version has already deprecated and **will not** be receiving Security Vulnerability Report.

| Version | Supported          |
| ------- | ------------------ |
| 0.x     | :x:                |
| 1.x     | :white_check_mark: |

## Reporting a Vulnerability

We first appreciate and are very thankful that you've found a vulnerability issue in Halo! By disclosing such issue to
Halo development team you are helping Halo to become a much more safer project than before! ;)

To protect the existing users of Halo, we kindly ask you to not disclose the vulnerability to anyone except the Halo
development team before a fix has been rolled out.

To Report a Vulnerability, please complete the form below, and send such report by email to `hi@halo.run`.

```
Vulnerability has been observed in...
  - Docker? [n/y]: 
    if yes for the question above,
    - `docker -v`: 
    - `docker images halohub/halo`: 
  
  - by `java -jar halo.jar`? [n/y]: 
    if yes for the question above,
    - `uname -a`: 
    - `java -version`: 
 
- Affected by Halo version(s) [e.g. v1.0.2]: 
- Vulnerability self-scoring [1-10]: 
- Would you like to be attributed? (Whether you agree us to appreciate you by putting your name in the CHANGELOG of the next fix release) [n/y]: 
```
Create SECURITY.md (#1144) 2020-11-11 03:03:11 +00:00			`# Security Policy`

			`## Supported Versions`

			`Halo currently supports the versions listed below, where as:`
Refactor checkstyle (#1241) * Refactor checkstyle.xml and add .editorconfig * Optimized imports * Rearrange codes * Fix check sytle error in source codes * Reformat test codes * Fix check style error in test codes * Config checkstyle plugin * Fix merge conflicts 2021-01-24 09:11:10 +00:00
			`- :white_check_mark: indicates an active development roadmap, is therefore maintaining, and will receive Security`
			`Vulnerability Report.`
Create SECURITY.md (#1144) 2020-11-11 03:03:11 +00:00			`- :x: indicates such version has already deprecated and will not be receiving Security Vulnerability Report.`

			`\| Version \| Supported \|`
			`\| ------- \| ------------------ \|`
			`\| 0.x \| :x: \|`
			`\| 1.x \| :white_check_mark: \|`

			`## Reporting a Vulnerability`

Refactor checkstyle (#1241) * Refactor checkstyle.xml and add .editorconfig * Optimized imports * Rearrange codes * Fix check sytle error in source codes * Reformat test codes * Fix check style error in test codes * Config checkstyle plugin * Fix merge conflicts 2021-01-24 09:11:10 +00:00			`We first appreciate and are very thankful that you've found a vulnerability issue in Halo! By disclosing such issue to`
			`Halo development team you are helping Halo to become a much more safer project than before! ;)`
Create SECURITY.md (#1144) 2020-11-11 03:03:11 +00:00
Refactor checkstyle (#1241) * Refactor checkstyle.xml and add .editorconfig * Optimized imports * Rearrange codes * Fix check sytle error in source codes * Reformat test codes * Fix check style error in test codes * Config checkstyle plugin * Fix merge conflicts 2021-01-24 09:11:10 +00:00			`To protect the existing users of Halo, we kindly ask you to not disclose the vulnerability to anyone except the Halo`
			`development team before a fix has been rolled out.`
Create SECURITY.md (#1144) 2020-11-11 03:03:11 +00:00
			To Report a Vulnerability, please complete the form below, and send such report by email to `hi@halo.run`.
Refactor checkstyle (#1241) * Refactor checkstyle.xml and add .editorconfig * Optimized imports * Rearrange codes * Fix check sytle error in source codes * Reformat test codes * Fix check style error in test codes * Config checkstyle plugin * Fix merge conflicts 2021-01-24 09:11:10 +00:00
Create SECURITY.md (#1144) 2020-11-11 03:03:11 +00:00			```
			`Vulnerability has been observed in...`
			`- Docker? [n/y]:`
			`if yes for the question above,`
			- `docker -v`:
Update SECURITY.md 2021-09-29 12:43:15 +00:00			- `docker images halohub/halo`:
Create SECURITY.md (#1144) 2020-11-11 03:03:11 +00:00
Update SECURITY.md 2021-09-29 12:43:15 +00:00			- by `java -jar halo.jar`? [n/y]:
Create SECURITY.md (#1144) 2020-11-11 03:03:11 +00:00			`if yes for the question above,`
			- `uname -a`:
			- `java -version`:

			`- Affected by Halo version(s) [e.g. v1.0.2]:`
			`- Vulnerability self-scoring [1-10]:`
			`- Would you like to be attributed? (Whether you agree us to appreciate you by putting your name in the CHANGELOG of the next fix release) [n/y]:`
			```