If you discover a security vulnerability in CourseCode, please report it responsibly:

1. Do not open a public GitHub issue for security vulnerabilities
2. Email [email protected] with details of the vulnerability
3. Include steps to reproduce the issue if possible
4. Allow reasonable time for us to address the issue before public disclosure

• Security vulnerabilities in the framework code
• Issues that could expose LMS credentials or learner data
• Vulnerabilities in dependencies that affect CourseCode

• Initial response: Within 48 hours
• Status update: Within 7 days
• Resolution target: Depends on severity

Thank you for helping keep CourseCode secure.