This document outlines security procedures for the Azure Governance Visualizer (aka AzGovViz) project.
We appreciate your dedication to responsible disclosure and will make every effort to acknowledge your contributions.
Latest
We ask that all suspected vulnerabilities be privately and responsibly disclosed via LinkedIn PN.
Here are some helpful details to include in your report:
- a detailed description of the issue
- the steps required to reproduce the issue
- versions of the project that may be affected by the issue
- if known, any mitigations for the issue
If the issue is confirmed, we will release a patch as soon as possible likely within 1 day to 30 days depending on complexity.