From ec4759e9349cb26027da7ce83d22b11154a78db6 Mon Sep 17 00:00:00 2001 From: Enno Gelhaus Date: Mon, 20 Apr 2026 03:11:24 +0200 Subject: [PATCH] feat: include cloud in security scope --- SECURITY.md | 1 + 1 file changed, 1 insertion(+) diff --git a/SECURITY.md b/SECURITY.md index d270c269..6ca97be5 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -12,6 +12,7 @@ We, at Postiz (gitroomhq), cover the following scopes for vulnerability disclosu - All `gitroomhq` repositories that are official components, tooling, or integrations of Postiz - Official Postiz container images published under `gitroomhq` on GHCR - Official Postiz CLI tools and NPM packages (NPM org: @postiz) +- Postiz-Cloud related infrastructure & services. (API, Frontend, Configurations etc.) - Plugins for Postiz maintained within the `gitroomhq` organization Vulnerabilities in third-party dependencies or user-hosted infrastructure are outside of this scope.