At Beliven, we take security seriously and are committed to protecting our systems, services, and customers' data. This document outlines our security practices and provides guidelines for reporting vulnerabilities.
We actively support and maintain the following versions of our software and services. Security updates are provided for these versions:
| Version | Supported |
|---|---|
| Latest (Stable) | ✅ Yes |
| Previous Major Release | ✅ Yes |
| Older Versions | ❌ No |
If you are using an unsupported version, we strongly recommend upgrading to the latest version to ensure you receive security updates.
If you discover a security vulnerability in any of our systems, services, or software, we encourage you to report it to us responsibly. Please follow these steps:
-
Contact Us: Send an email to [email protected] with the details of the vulnerability. Include:
- A clear and concise description of the issue.
- Steps to reproduce the vulnerability.
- Any potential impact or risk associated with the issue.
- Your contact information for follow-up.
-
Do Not Disclose Publicly: Please do not share the vulnerability publicly or with third parties until we have had the opportunity to investigate and address the issue.
-
Response Time: We aim to acknowledge receipt of your report within 48 hours and provide an initial assessment within 5 business days. We will keep you updated on the progress of our investigation.
-
Recognition: If you report a valid security vulnerability, we are happy to acknowledge your contribution in our security advisory (if applicable) or provide other forms of recognition, subject to your consent.
To ensure the security of our systems and services, we follow these best practices:
- Regular security audits and penetration testing.
- Secure coding practices and code reviews.
- Continuous monitoring for potential threats.
- Prompt patching of known vulnerabilities.
We welcome security testing of our publicly accessible systems and services. However, please avoid:
- Testing that could disrupt our services or impact other users.
- Exploiting vulnerabilities beyond what is necessary to demonstrate the issue.
- Accessing or modifying data that does not belong to you.
For any security-related inquiries or to report a vulnerability, please contact us at [email protected].