# 🛡️ Security Policy
> **MKT_KSA_Geolocation_Security – Security and Vulnerability Management**
---
## ✅ Supported Versions
| 1.0.2 | 🟢 Current | Current stable release |
| 1.0.x | 🟢 Supported | First official line |
- Only the **latest stable** and **LTS** branches receive security patches.
- Old versions (< 4.0) are **not maintained** for security fixes.
---
## 📦 Released Versions | الإصدارات المنشورة
| v1.0.2 | الإصدار الحالي؛ تنظيف Clippy بالكامل، تدقيق تبعيات، إضافة `security/signing.rs` و`utils/precision.rs`، تحديثات طفيفة؛ بدون OpenSSL | Current release; zero Clippy warnings, dependency audit, new `security/signing.rs` and `utils/precision.rs`, minor bumps; no OpenSSL |
| v1.0.1 | تحسينات توثيق وCI/Docker واستقرار نقاط النهاية | Docs/CI/Docker improvements; API stabilization |
| v1.0.0 | أول إصدار عام مستقر | First stable public release |
> للمواعيد الدقيقة والتغييرات التفصيلية، راجع وسوم Git وGitHub Releases و`README`.
---
## 🛠️ Reporting a Vulnerability
If you discover a security vulnerability, please follow these steps:
1. **Do NOT create a public GitHub issue for security vulnerabilities.**
2. **Report privately** via email:
📧 `mkt-edge@outlook.sa`
_(or via GitHub Security Advisories if available)_
3. Include:
- **Description** of the vulnerability
- Steps to reproduce
- Potential impact
- Your contact info
### 🔔 Response & Updates
- You will **receive an initial reply within 2 business days**.
- We aim to **resolve and release a patch within 7–14 days** of valid report.
- Status updates will be sent until closure (Accepted/Declined/Patched).
- Responsible disclosure is appreciated – **do not publish details** until a fix is available.
---
**Thank you for helping keep our ecosystem secure!**
_MKT KSA Geolocation Security Team (Current: v1.0.2)_