Skip to content

Security: cassiodeveloper/aparicoes-marianas

Security

Report a vulnerability

SECURITY.md

Security Policy

Supported Versions

This project is a static web application and open dataset. There are no versioned releases with security support guarantees.

The latest version of the repository (main branch) is considered the authoritative and supported version.

Reporting Security Issues

If you discover a security vulnerability, data integrity issue, or abuse scenario related to this project, please do not open a public issue.

Instead, report it privately.

What to report

Please report any of the following:

  • Security vulnerabilities in the website or JavaScript code
  • Malicious data injection or dataset tampering risks
  • Broken trust boundaries (e.g. unsafe external links)
  • Abuse vectors related to hosting, scraping, or misuse of the dataset
  • Privacy or compliance concerns related to linked external resources

How to report

Send a detailed report to:

📧 cassio@cassiobp.com.br

Please include, when possible:

  • A clear description of the issue
  • Steps to reproduce (if applicable)
  • Impact assessment (what could go wrong)
  • Screenshots or proof of concept (if relevant)

You can write in English or Portuguese.

Disclosure Process

  • Reports will be acknowledged as soon as reasonably possible.
  • Valid security issues will be assessed and fixed.
  • When appropriate, a coordinated disclosure may be performed.

There is no bug bounty program associated with this project.

Data Integrity & Editorial Security

This project is based on a curated dataset with explicit editorial criteria.

If you identify:

  • Incorrect classification
  • Misattributed sources
  • Broken or misleading official links
  • Incorrect authority level or canonical status

Please open a regular issue instead of a security report.

Editorial issues are handled transparently.

Out of Scope

The following are not considered security issues:

  • Disagreements with theological interpretations
  • Doctrinal debates
  • Opinions about the authenticity of non-recognized apparitions
  • Requests to add or remove apparitions based on belief alone

These topics may be discussed through normal project channels.

Responsible Use

This project provides historical and documentary information. It does not claim theological authority beyond cited official sources.

Users are responsible for how the information is interpreted or reused.

Thank you for helping keep this project trustworthy and reliable.

There aren’t any published security advisories