You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+4-4Lines changed: 4 additions & 4 deletions
Original file line number
Diff line number
Diff line change
@@ -11,15 +11,15 @@ We ask that you:
11
11
12
12
- Make every effort to avoid privacy violations, degradation of user experience, disruption to production systems, and destruction or manipulation of data.
13
13
- Only use exploits to the extent necessary to confirm a vulnerability, don’t exploit a vulnerability for gain. Do not use an exploit to compromise or exfiltrate data, establish command line access and/or persistence, or use the exploit to "pivot" to other systems. Once you've established that a vulnerability exists, or encountered any of the sensitive data outlined below, please stop your test and notify us immediately.
14
-
- Please keep confidential any information about discovered vulnerabilities for **up to 90 calendar days** after you have notified Arduino, unless mutually agreed otherwise. For details, please review our **Coordinated Disclosure** section below.
14
+
- Please keep confidential any information about discovered vulnerabilities for **up to 90 calendar days** after you have notified Arduino, unless mutually agreed otherwise. For details, please review our [**Coordinated Disclosure**](#coordinated-disclosure) section below.
15
15
- Please do not modify, store or access data that does not belong to you. Instead, use your own accounts for security research purposes.
16
-
- If you inadvertently access, modify, delete, or store user data, we ask that you notify Arduino immediately at [**security@arduino.cc**](mailto:security@arduino.cc.) and delete any stored data after notifying us.
16
+
- If you inadvertently access, modify, delete, or store user data, we ask that you notify Arduino immediately at [**security@arduino.cc**](mailto:security@arduino.cc) and delete any stored data after notifying us.
17
17
18
-
When in doubt about if your potential conduct complies with this policy, please contact us first, before taking action, at [**security@arduino.cc**](mailto:security@arduino.cc.) and we will address your questions.
18
+
When in doubt about if your potential conduct complies with this policy, please contact us first, before taking action, at [**security@arduino.cc**](mailto:security@arduino.cc) and we will address your questions.
19
19
20
20
## Reporting a vulnerability
21
21
22
-
We accept and discuss vulnerability reports via email at [**security@arduino.cc**](mailto:security@arduino.cc.). Please encrypt your findings using **our PGP key** to prevent this critical information from falling into the wrong hands.
22
+
We accept and discuss vulnerability reports via email at [**security@arduino.cc**](mailto:security@arduino.cc). Please encrypt your findings using **our PGP key** to prevent this critical information from falling into the wrong hands.
0 commit comments