This security policy applies to all packages inside this repository, i.e. the following:
- The StopMalwareContent extension
- The StopMalwareContent dashboard
- The StopMalwareContent API
For packages outside this repository, refer to that respective project's SECURITY.md.
You can submit a security vulnerability via GitHub. On the security page, choose to open a security advisory, and fill in the relevant details. These details will be shared only with the StopMalwareContent core team, and not anyone else.
DO NOT REPORT SECURITY ISSUES VIA GITHUB ISSUES. DOING SO WILL PUBLICLY EXPOSE THE ISSUE.