At Sundsvall Municipality, we take security very seriously and appreciate your help in responsibly disclosing any vulnerabilities. If you discover a security issue, please follow these steps:

• Do not create a public issue or share information about the vulnerability publicly.
• Contact us directly via email at [email protected] with details about the vulnerability.

Please include the following information in your report:

• A detailed description of the vulnerability.
• Steps to reproduce the issue.
• Potential impact and severity.

We will acknowledge receipt of your report within 2 business days and keep you informed of our investigation and remediation efforts.

• Confidentiality: We treat all security reports with strict confidentiality and will not share the information with third parties without your consent.
• Prompt Action: We strive to address reported vulnerabilities as quickly as possible.
• Transparency: After the issue has been resolved, we will inform relevant parties and, if appropriate, publicly disclose information about the fix.

We continuously maintain and update our repositories. To ensure the highest level of security, we recommend always using the latest version of our software.

We appreciate your contribution to improving the security of our projects and for helping to protect the users of our software.