We release patches for security vulnerabilities. Which versions are eligible for receiving such patches depends on the CVSS v3.0 Rating:
| Version | Supported |
|---|---|
| 1.x | ✅ |
If you discover a security vulnerability within this PowerShell Module, please report it as soon as possible. We appreciate your efforts to responsibly disclose your findings and will make every effort to acknowledge your contributions.
To report a vulnerability:
- Email us: Send an email to security@azurehacking.com with the details of the vulnerability.
- Provide details: Please include as much information as possible. This helps us understand the nature of the vulnerability and its potential impact.
We will respond to your email as soon as possible, typically within 48 hours to acknowledge receipt of your report. We will follow up with further details, including an estimated timeline for a fix and any additional information we may need.
- We will work with you to understand the issue and confirm its validity.
- We will take the necessary steps to fix the vulnerability.
- We will notify you when the fix has been implemented and the patch has been released.
We ask that you keep the details of any discovered vulnerabilities confidential until we have confirmed and released a fix. This helps protect users from potential exploitation of the vulnerability.
Once the vulnerability has been fixed, we will disclose the details of the issue in our release notes and credit you for your discovery if you wish to be publicly acknowledged.
Thank you for helping to keep our PowerShell Module secure.