From 55820b79917d725e120d4a57f4be43851f6b1143 Mon Sep 17 00:00:00 2001 From: Doug Winzell <142451442+Collected5353@users.noreply.github.com> Date: Wed, 24 Jan 2024 07:08:49 -0800 Subject: [PATCH 1/2] Create SECURITY.md Hello Team, As the continued popularity of this project increases we should be taking our projects goals in mind with concerns to privacy and security. In the near future I would like to at least start testing the codebase with SAST(semgrep) and Synk.io (Software Composition Analysys) To highlight any potential weaknesses in the security of the product. I am happy to start contributing from the security side. --- SECURITY.md | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 00000000..6ceafb16 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,20 @@ +# Security Policy +Our primary goal is to ensure the protection and confidentiality of sensitive data stored by users on ollama-webui. +## Supported Versions + + +| Version | Supported | +| ------- | ------------------ | +| main | :white_check_mark: | +| others | :x: | + + +## Reporting a Vulnerability + +If you discover a security issue within our system, please notify us immediately via a pull request or contact us on discord. + +## Product Security +We regularly audit our internal processes and system's architecture for vulnerabilities using a combination of automated and manual testing techniques. + +We are planning on implementing SAST and SCA scans in our project soon. + From ca188b14aba7e6fb2ecd1a3aeebfb33b717a3f1e Mon Sep 17 00:00:00 2001 From: Doug Winzell <142451442+Collected5353@users.noreply.github.com> Date: Thu, 25 Jan 2024 07:54:18 -0800 Subject: [PATCH 2/2] Rename SECURITY.md to docs/SECURITY.md Moved Security.md to /docs Will still show up on the GH security tab. --- SECURITY.md => docs/SECURITY.md | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename SECURITY.md => docs/SECURITY.md (100%) diff --git a/SECURITY.md b/docs/SECURITY.md similarity index 100% rename from SECURITY.md rename to docs/SECURITY.md