Currently, only the latest version of the BYAMN Learning Platform is supported with security updates.
| Version | Supported |
|---|---|
| 1.x.x | ✅ |
| < 1.0 | ❌ |
We take the security of our platform seriously. If you have discovered a security vulnerability in our application, we appreciate your help in disclosing it to us in a responsible manner.
Please do not report security vulnerabilities through public GitHub issues.
Instead, please report them by sending an email to our security team at security@byamn.vercel.app.
Please include the following information in your report:
- Description of the vulnerability
- Steps to reproduce the vulnerability
- Potential impact of the vulnerability
- Any possible mitigations you've identified
Our team will acknowledge your report within 48 hours and will send a more detailed response within 72 hours indicating the next steps in handling your report.
After the initial reply to your report, our team will endeavor to keep you informed of the progress towards a fix and full announcement, and may ask for additional information or guidance.
We implement several security measures to protect our users and their data:
- Firebase Security: We use Firebase Authentication and Security Rules to protect user data
- HTTPS: All communications are encrypted in transit
- Input Validation: We validate and sanitize all user inputs
- Regular Updates: We regularly update our dependencies to address known vulnerabilities
To help keep your account secure, we recommend:
- Use a strong, unique password
- Enable two-factor authentication if available
- Keep your browser and operating system up to date
- Be cautious of phishing attempts and suspicious emails