You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -26,6 +26,17 @@ The [Installation Guide] introduces you to to OpenIDM and provides some samples
Issues are handled via the [GitHub issues page for the project][GitHub Issues].
## Security Policy
ForgeRock will create GitHub issues for any known security issues that are thought to affect the community edition. They will have a SECURITY label. Community members are responsible for fixing and testing any security issues.
### What should I do if I find a new security issue?
If you find a new security issue in the community edition please send an email describing the issue and how it may be reproduced to [email protected]. Once we receive the email we will;
- Confirm whether or not the vulnerability affects any currently supported versions and if so we will follow our standard security response process which will involve us publishing the GitHub issue as part of the security advisory process
- If the issue does not affect any supported versions we will notify the reporter and request that they create a github issue directly
