2298d36bed
- Create Economist SubmissionTracking package correctly: * mainArticle = full blog post content * coverLetter = 216-word SIR— letter * Links to blog post via blogPostId - Archive 'Letter to The Economist' from blog posts (it's the cover letter) - Fix date display on article cards (use published_at) - Target publication already displaying via blue badge Database changes: - Make blogPostId optional in SubmissionTracking model - Economist package ID: 68fa85ae49d4900e7f2ecd83 - Le Monde package ID: 68fa2abd2e6acd5691932150 Next: Enhanced modal with tabs, validation, export 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
36 lines
1 KiB
Text
36 lines
1 KiB
Text
# Security Policy
|
|
|
|
Contact: mailto:security@agenticgovernance.digital
|
|
Expires: 2026-10-09T00:00:00.000Z
|
|
Preferred-Languages: en
|
|
Canonical: https://agenticgovernance.digital/.well-known/security.txt
|
|
|
|
# Encryption
|
|
# Please use PGP encryption for sensitive security reports
|
|
# Public key available at: https://agenticgovernance.digital/.well-known/pgp-key.txt
|
|
|
|
# Policy
|
|
# We take security seriously and appreciate responsible disclosure
|
|
# Please allow up to 48 hours for initial response
|
|
# We aim to patch critical vulnerabilities within 7 days
|
|
|
|
# Scope
|
|
# In scope:
|
|
# - XSS, CSRF, SQL/NoSQL injection
|
|
# - Authentication/authorization bypass
|
|
# - Sensitive data exposure
|
|
# - Server-side vulnerabilities
|
|
|
|
# Out of scope:
|
|
# - Social engineering
|
|
# - Physical security
|
|
# - Denial of Service (DoS/DDoS)
|
|
# - Self-XSS
|
|
# - Clickjacking on pages without sensitive actions
|
|
|
|
# Acknowledgments
|
|
# https://agenticgovernance.digital/security-researchers
|
|
|
|
# Hall of Fame
|
|
# Security researchers who responsibly disclosed vulnerabilities:
|
|
# (None yet - be the first!)
|