Vulnerability Disclosure
Reporting
If you discover a security vulnerability in SpaceOS, please report it responsibly:
- Email: security@zenspace.io
- Include: description, reproduction steps, potential impact
- Do not disclose publicly until the issue is resolved
Response Timeline
| Phase | Target |
|---|---|
| Acknowledgment | 48 hours |
| Assessment | 5 business days |
| Fix deployed | Based on severity |
| Disclosure | After fix is deployed |