Aventus Network is committed to resolving security vulnerabilities quickly and carefully. We make every effort to ensure that risks are minimised and vulnerability fixes are delivered quickly to address security issues.
Please do not report a security issue using a public ticket or forum.
Security vulnerabilities in Aventus Network should be reported by email to info@aventus.io.
Your report should include the following:
- your name
- description of the vulnerability
- attack scenario (if any)
- components
- reproduction
- other details (if any)
Try to include as much information in your report as you can, including a description of the vulnerability, its potential impact, and steps for reproducing it. Be sure to use a descriptive subject line.
You'll receive a response to your email within 48 hours indicating the next steps in handling your report.
Thank you for taking the time to responsibly disclose any vulnerabilities you find.
Responsible investigation and reporting includes, but isn't limited to, the following:
- Initially report the bug only to us and not to anyone else. This will give us reasonable time to fix the bug.
- Give us adequate written warning before disclosing it to anyone else.