api-bones 4.0.0

Opinionated REST API types: errors (RFC 9457), pagination, health checks, and more
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25

# Security Policy

## Supported Versions

| Version | Supported |
|---------|-----------|
| 3.x     ||
| < 3.0   ||

## Reporting a Vulnerability

**Do not open a public GitHub issue for security vulnerabilities.**

Please report security issues by email to **gregoire.salingue@pm.me**.

Include:
- A description of the vulnerability
- Steps to reproduce or proof-of-concept
- Impact assessment if known

You can expect an acknowledgement within 48 hours and a resolution timeline within 7 days for critical issues.

## Scope

This crate includes cryptographic surface (HMAC-SHA256 cursor signing, Base64 credential handling, `zeroize`-protected secrets). These are the most sensitive areas; reports against them are treated as high priority.