Your security is our priority. If you discover a security vulnerability or have concerns about the integrity of this project, please report it responsibly.
- Email: Please send details to [ForgeSignHelp@gmail.com].
- GitHub: Open a confidential issue if enabled, or use the GitHub Security Advisory system.
Please include:
- Description of the issue
- Steps to reproduce
- Potential impact
- Any suggested fixes or mitigations
- We acknowledge reports promptly (within 48 hours).
- We work to assess and address vulnerabilities as quickly as possible.
- Security fixes will be released transparently and with appropriate versioning.
- Always download releases and files from the official repository: https://github.com/Forge-Sign/Forge-Sign.
- Verify file integrity when possible.
- Exercise caution with unsolicited links or attachments claiming association with Forge-Sign.
This policy covers security issues related to the Forge-Sign project and its official assets only. For questions or general feedback, please use the repository’s issue tracker or discussion forum.
Thank you for helping keep Forge-Sign safe and trustworthy.