Security Policy
Supported Versions
The following table outlines the versions of the .NET SDK for Diia API that are actively supported with security updates:
| Version | Supported |
|---|---|
| 1.0.x | ✅ |
Reporting a Vulnerability
If you discover a vulnerability in the .NET SDK for Diia API, please report it to us as soon as possible. Here’s how to do it:
Contact Us Directly: Send an email to a.aleshkov@thedigital.gov.ua with the details of the vulnerability.
Provide Detailed Information: Include as much information as possible, such as:
A clear and concise description of the vulnerability.
Steps to reproduce the issue.
Potential impact and any available mitigation strategies.
Your contact information for follow-up questions.
Response Time: We aim to respond to vulnerability reports within 5 business days. After initial assessment, you will receive updates on the status of your report every 10 business days until resolution.
Confidentiality: We will treat your report with the highest priority and confidentiality. Please avoid disclosing the vulnerability publicly until we have resolved it and published an advisory if necessary.
Thank you for helping us keep the Diia API .NET SDK secure for everyone!