Security Guide

Thank you for helping to keep GoDarda safe and secure. We welcome responsible disclosures and aim to respond quickly to any valid reports.

📚 Table of Contents

• Reporting a Vulnerability
• Scope
• Disclosure Guidelines
• Thank You

Reporting a Vulnerability

If you discover a security vulnerability in GoDarda or any of its related assets (e.g., documentation, scripts, hosted pages), please open a GitHub issue with the label security.

Include as much detail as possible:

• A clear description of the vulnerability
• Steps to reproduce (if applicable)
• Potential impact
• Any suggested mitigation or fix

We aim to respond within 72 hours and will keep you updated throughout the process.

Scope

This policy applies to:

• Source code in this repository
• GitHub Pages hosted under godarda.github.io
• Contributor documentation and automation scripts

Out of scope:

• Issues related to third-party dependencies unless directly exploitable through GoDarda
• Social engineering or spam reports

Disclosure Guidelines

We ask that you:

• Please report security issues responsibly. While issues are public by default, we ask that you avoid sharing exploit details in the initial report. This gives us time to investigate and respond appropriately
• Act in good faith and avoid data destruction or service disruption
• Respect privacy and legal boundaries

We commit to:

• Acknowledging valid reports
• Giving credit (if desired) in release notes or acknowledgments
• Keeping communication respectful and transparent

Thank You!

GoDarda is built on trust, clarity, and community. We deeply appreciate your help in keeping it secure for everyone.