The Rust-Starter project welcomes security reports and is committed to providing prompt attention to security issues. Security issues should be reported privately via [email protected]. Security issues should not be reported via the public Github Issue tracker.
Remediation of security vulnerabilities is prioritized by the project team. The project team coordinates remediation with third-party project stakeholders via Github Security Advisories. Third-party stakeholders may include the reporter of the issue, affected direct or indirect users of Rust-Starter, and maintainers of upstream dependencies if applicable.
The project team is committed to transparency in the security issue disclosure process. We announce security issues via project Github Release notes.