# Security Policy ## How To Report a Vulnerability If you think you have found a vulnerability in this repository, please report it to us through coordinated disclosure. **Please do not report security vulnerabilities through public issues, discussions, or change requests.** Instead, you can report it using one of the following ways: * Contact the [TrueCloudLab Security Team](mailto:sec@frostfs.info) via email Please include as much of the information listed below as you can to help us better understand and resolve the issue: * The type of issue (e.g., buffer overflow, or cross-site scripting) * Affected version(s) * Impact of the issue, including how an attacker might exploit the issue * Step-by-step instructions to reproduce the issue * The location of the affected source code (tag/branch/commit or direct URL) * Full paths of source file(s) related to the manifestation of the issue * Any special configuration required to reproduce the issue * Any log files that are related to this issue (if possible) * Proof-of-concept or exploit code (if possible) This information will help us triage your report more quickly.