Thank you for contributing to the security of NIGHTINGALE. We appreciate your help in identifying and addressing security vulnerabilities. Please follow the guidelines below to report any security issues. We are committed to responding promptly and transparently.

To report a security vulnerability, please email [email protected] with the following information:

• Name / Affiliation: Your name and organizational affiliation (if applicable).
• Vulnerability Description: A detailed description of the vulnerability, including its nature and potential impact.
• Steps to Reproduce: Clear and concise steps to reproduce the issue.
• Current Public Knowledge: Any existing information related to the vulnerability, such as CVEs, security advisories, or known issues.

• Acknowledgment: We aim to acknowledge receipt of your report within 5 business days.
• Assessment: Our team will assess the report and communicate the status within 5 business days of acknowledgment.
• Patch Release: If the vulnerability is confirmed, we strive to release a patch within 10 business days.

If you believe the vulnerability poses an immediate risk, please include this information in your report, and we will prioritize it accordingly.

We will work with you to ensure a responsible disclosure process. If a report is declined, we will provide an explanation.

As of now, NIGHTINGALE supports the following versions:

Note: Older versions may not receive security updates or support. Please upgrade to the latest version to benefit from the latest security patches and features.

For any additional questions or concerns, feel free to contact us at [email protected].