Skip to content

Security: SearchSteward/.github

Security

SECURITY.md

Security Policy

SearchSteward handles job seekers' résumés and application history, so we take security reports seriously.

Reporting a vulnerability

Email security@searchsteward.com with a description of the issue, steps to reproduce, and any relevant details. Please do not open a public issue for security reports.

You'll get an acknowledgment within 2 business days. We ask that you give us a reasonable window to remediate before any public disclosure.

Scope

  • The SearchSteward application and API (searchsteward.com)
  • The open-source modules in this organization

Out of scope: denial-of-service, social engineering, and reports against third-party services we integrate with.

There aren't any published security advisories