Netmikro is a Python API designed for managing Mikrotik routers. This policy outlines the security measures and procedures to ensure the safe usage and development of the project. The goal is to protect the Netmikro community and users from potential threats.
| Version | Supported |
|---|---|
| 7.14.3 | ✅ |
| Others | Not tested |
If you discover a vulnerability in Netmikro, please report it immediately by sending an email to security@henriquesebastiao.com. Include the following details:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Suggested mitigation or fix
I (the maintainer, @henriquesebastiao) will fully review it and get back to you.
When using Netmikro, follow these best practices to safeguard your environment:
- Network Security: Ensure that routers managed by Netmikro are on a secure network and protected by a firewall.
- Updates and Patching: Keep Netmikro and dependent libraries up to date to receive the latest security fixes.
- Logging and Monitoring: Enable logging to detect suspicious activities and monitor for any unauthorized access.
- Code Review: All code changes must go through a thorough review process.
- Dependency Management: Regularly audit dependencies for known vulnerabilities.
- Static Code Analysis: Use static analysis tools to detect security issues during development.
- Testing: Develop comprehensive tests, including unit and integration tests, to identify potential security issues early.
- Documentation: Document any security-related features or configuration to assist users in maintaining secure deployments.
We are continuously improving Netmikro's security. Users and contributors are encouraged to provide feedback and suggestions for enhancing the security of the project.
For security issues or inquiries, please reach out to security@henriquesebastiao.com.