From fc29c3bc68bc8f03c0137b9bfc946a053fc07da2 Mon Sep 17 00:00:00 2001
From: Sandeep Vashishtha <sandeepvashishtha@outlook.in>
Date: Fri, 24 May 2024 23:01:10 +0530
Subject: [PATCH 1/2] Create SECURITY.md

---
 SECURITY.md | 36 ++++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..7e9a45c
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,36 @@
+# Security Policy
+
+## Reporting Security Vulnerabilities
+
+At Custom Code Builder, we take security seriously and value the contributions of security researchers. If you discover any security vulnerabilities in our project, we encourage you to responsibly disclose them to us. We are committed to promptly addressing and fixing such issues.
+
+To report a security vulnerability, please email us at [dhanushxenocrate@gmail.com](mailto:dhanushxenocrate@gmail.com). We kindly request that you refrain from publicly disclosing the vulnerability until we have had an opportunity to address it.
+
+When reporting a security vulnerability, please provide us with the following information:
+
+- Description of the vulnerability, including any relevant technical details
+- Steps to reproduce the vulnerability
+- Any potential impact or exploit scenario
+- Your name/handle and a means of contacting you for further discussion
+
+We will acknowledge receipt of your report within [specify time frame] and keep you informed of our progress in resolving the issue.
+
+## Responsible Disclosure Policy
+
+We follow a responsible disclosure policy and strive to address security vulnerabilities in a timely manner. Once we receive a report of a security vulnerability, we will:
+
+1. **Confirm Receipt**: We will acknowledge receipt of the report and assign it a tracking number.
+2. **Investigate**: We will investigate the reported vulnerability to validate its existence and assess its severity.
+3. **Develop Fix**: If the vulnerability is confirmed, we will develop a fix to address it.
+4. **Release Fix**: We will release the fix as soon as possible and notify our users about the security update.
+5. **Credit**: We will publicly acknowledge the individual or organization that reported the vulnerability, unless requested otherwise.
+
+We appreciate the efforts of security researchers in helping us maintain the security of Custom Code Builder and its users.
+
+
+## Contact Us
+
+If you have any questions or concerns about our security practices or this policy, please contact us at [dhanushxenocrate@gmail.com](mailto:dhanushxenocrate@gmail.com).
+
+Thank you for your commitment to security.
+

From 5b31f929a19d23812bd0bd5ecb1224b91ddb6694 Mon Sep 17 00:00:00 2001
From: Sandeep Vashishtha <sandeepvashishtha@outlook.in>
Date: Fri, 24 May 2024 23:15:39 +0530
Subject: [PATCH 2/2] Update SECURITY.md

---
 SECURITY.md | 10 +++-------
 1 file changed, 3 insertions(+), 7 deletions(-)

diff --git a/SECURITY.md b/SECURITY.md
index 7e9a45c..3ed25fa 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -4,16 +4,14 @@
 
 At Custom Code Builder, we take security seriously and value the contributions of security researchers. If you discover any security vulnerabilities in our project, we encourage you to responsibly disclose them to us. We are committed to promptly addressing and fixing such issues.
 
-To report a security vulnerability, please email us at [dhanushxenocrate@gmail.com](mailto:dhanushxenocrate@gmail.com). We kindly request that you refrain from publicly disclosing the vulnerability until we have had an opportunity to address it.
-
-When reporting a security vulnerability, please provide us with the following information:
+To report a security vulnerability, please join our Discord server at [Custom Code Builder Discord](https://discord.gg/Yn9g6KuWyA) . Once there, you can privately message one of the moderators or administrators with the following information:
 
 - Description of the vulnerability, including any relevant technical details
 - Steps to reproduce the vulnerability
 - Any potential impact or exploit scenario
 - Your name/handle and a means of contacting you for further discussion
 
-We will acknowledge receipt of your report within [specify time frame] and keep you informed of our progress in resolving the issue.
+We kindly request that you refrain from publicly disclosing the vulnerability until we have had an opportunity to address it.
 
 ## Responsible Disclosure Policy
 
@@ -27,10 +25,8 @@ We follow a responsible disclosure policy and strive to address security vulnera
 
 We appreciate the efforts of security researchers in helping us maintain the security of Custom Code Builder and its users.
 
-
 ## Contact Us
 
-If you have any questions or concerns about our security practices or this policy, please contact us at [dhanushxenocrate@gmail.com](mailto:dhanushxenocrate@gmail.com).
+If you have any questions or concerns about our security practices or this policy, please contact us through our Discord server or via email at [Custom Code Builder Discord](https://discord.gg/Yn9g6KuWyA).
 
 Thank you for your commitment to security.
-