# Security Policy for SBOMix
# RFC 9116 compliant security.txt file
# For reporting security vulnerabilities, please contact the details below

Contact: mailto:security@sbomix.com
Contact: https://github.com/RunTimeAdmin/sbomix/security/advisories
Expires: 2027-06-28T00:00:00.000Z
Preferred-Languages: en
Canonical: https://sbomix.com/.well-known/security.txt
Policy: https://sbomix.com/security-policy
Acknowledgments: https://sbomix.com/security-acknowledgments

# SBOMix Security Information
# 
# We take security seriously and appreciate responsible disclosure.
# If you discover a security vulnerability in SBOMix, please report it
# to the contacts listed above rather than disclosing it publicly.
#
# Please include:
# - Description of the vulnerability
# - Steps to reproduce
# - Potential impact
# - Your contact information
#
# We will acknowledge your report within 48 hours and work with you
# to resolve the issue responsibly.