# Security disclosure

This document outlines the safety procedures and general policies of the MASA Blazor project.

# Report error

The MASA Blazor team and community take all security vulnerabilities in MASA Blazor seriously. We appreciate your efforts and responsible disclosure, and will make every effort to recognize your contribution.

To report a security issue, please email opensource@masastack.com and include the word "SECURITY" in the subject line

The MASA Blazor team will send a response explaining the next steps in processing your report. The MASA Blazor team will send a response explaining the next steps in processing your report. After an initial response to your report, the security team will keep you informed of the progress of the repair and the complete announcement, and may ask you to provide additional information or guidance.


# Disclosure policy

When the security team receives a security vulnerability report, they will assign it to a primary processor. This person will coordinate the repair and release procedures, involving the following steps:

  • Identify the problem and determine the affected version.
  • Audit the code to discover any potential similar issues.
  • Prepare fixes for all versions that are still under maintenance. These fixes will be published as soon as possible.

# Suggestions for this policy

If you have suggestions on how to improve this process, please submit using issue.