1. Scope
This Security Policy describes how to report security vulnerabilities that could impact Regula and how we handle reports.
2. Reporting a Vulnerability
Email security@regula.mushoodhanif.com with:
- Affected URL(s) or component(s)
- Steps to reproduce or proof-of-concept
- Expected vs observed behavior
- Any relevant logs/screenshots
3. Safe Harbor
We welcome good-faith security research. Please avoid privacy violations, data destruction, or disruption of service.
4. Response Process
- We acknowledge receipt within 3 business days.
- We triage severity and validate impact.
- We coordinate remediation and will notify you when it’s resolved.