vrr/codeburn
2
0
Fork 0
mirror of https://github.com/AgentSeal/codeburn.git synced 2026-05-17 12:20:43 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
codeburn/SECURITY.md
iamtoruk 15334fac67 Add SHA-256 checksum verification to menubar installer 
The installer now downloads and verifies a .sha256 companion file
before extracting and launching the menubar app. Build script and
CI workflow generate the checksum alongside the zip. Adds SECURITY.md
with reporting instructions.

Addresses #215.
2026-05-04 10:08:58 -07:00

655 B
Raw Permalink Blame History

Security Policy

Reporting a Vulnerability

Please report security vulnerabilities via GitHub's private vulnerability reporting.

Do not open a public issue for security vulnerabilities.

Scope

Security reports are welcome for:

  • The CLI (src/)
  • The menubar installer (src/menubar-installer.ts)
  • The macOS menubar app (mac/)
  • The desktop app (desktop/)
  • CI/CD workflows (.github/workflows/)

Release Integrity

Menubar release assets include a .sha256 checksum file. The installer verifies the checksum before extracting and launching the downloaded bundle.