protonmail-bridge-nextcoud-.../SECURITY.md

# Security Policy

## Scope

This policy covers security issues in the Docker container and associated scripts in this repository. It does not cover vulnerabilities in the Proton Bridge application itself — those should be reported directly to [Proton](https://proton.me/security).

## Reporting a Vulnerability

To report a security vulnerability in this project, please [open a GitHub issue](https://github.com/dancwilliams/protonmail-bridge-docker/issues) with the label `security`. For sensitive disclosures, you may also reach out via GitHub's private vulnerability reporting feature under the Security tab of this repository.

Please include:
- A description of the vulnerability
- Steps to reproduce
- Potential impact
- Any suggested mitigations if known
Create SECURITY.md 2020-11-20 07:38:33 +00:00			`# Security Policy`

Update docs to reflect community fork and recent changes - Rewrite README: update all refs from shenxn to dancwilliams, remove deb build references, document what changed from upstream, simplify tags section, update all docker run and compose commands, add architecture table, add version update automation section, add credits - Update SECURITY.md: replace shenxn contact with dancwilliams GitHub issue reporting, clarify scope (container vs bridge itself) - Update docker-compose.yml: point to dancwilliams/protonmail-bridge, remove deprecated version key 2026-02-25 02:17:41 +00:00			`## Scope`

			`This policy covers security issues in the Docker container and associated scripts in this repository. It does not cover vulnerabilities in the Proton Bridge application itself — those should be reported directly to [Proton](https://proton.me/security).`

Create SECURITY.md 2020-11-20 07:38:33 +00:00			`## Reporting a Vulnerability`

Update docs to reflect community fork and recent changes - Rewrite README: update all refs from shenxn to dancwilliams, remove deb build references, document what changed from upstream, simplify tags section, update all docker run and compose commands, add architecture table, add version update automation section, add credits - Update SECURITY.md: replace shenxn contact with dancwilliams GitHub issue reporting, clarify scope (container vs bridge itself) - Update docker-compose.yml: point to dancwilliams/protonmail-bridge, remove deprecated version key 2026-02-25 02:17:41 +00:00			To report a security vulnerability in this project, please [open a GitHub issue](https://github.com/dancwilliams/protonmail-bridge-docker/issues) with the label `security`. For sensitive disclosures, you may also reach out via GitHub's private vulnerability reporting feature under the Security tab of this repository.

			`Please include:`
			`- A description of the vulnerability`
			`- Steps to reproduce`
			`- Potential impact`
			`- Any suggested mitigations if known`