Skip to content

Security: NillionNetwork/cggmp21

Security

SECURITY.md

Security Policy

Supported Versions

Only the latest version of the library is supported.

Reporting a Vulnerability

We highly welcome vulnerabilities reported through either:

  1. Github, in the "Security" tab, using the "Report a vulnerability" button.
  2. Email, [email protected]

After receiving the report, it will take us up to 2 working days to respond. We will evaluate the reported vulnerability, determine whether it needs to be addressed, and (if so) and provide an estimated timeline for addressing it.

After vulnerability was fixed and the new version of CGGMP21 protocol was properly tested, we publish the fix, and publicly disclose the vulnerability (credits for finding the issue go to the reporter).

There aren’t any published security advisories