MediQ is currently in active development. Security updates are applied to:
| Version | Supported |
|---|---|
| Current (main branch) | β |
| Development | β |
MediQ handles health-related information and user data. We take security seriously:
- π User authentication is protected
- π₯ Health information discussions remain anonymous
- π API keys and sensitive data are secured
- π± Privacy-by-design for all user profiles
π§ Email: [email protected]
Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact on user data
- Your contact information
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Resolution: 1-30 days (based on severity)
- π΄ Critical: Affects user health data or authentication
- π High: Compromises user privacy
- π‘ Medium: Limited functionality impact
- π’ Low: Minor security improvements
For contributors:
- Never commit API keys or passwords
- Use environment variables for sensitive data
- Validate all health-related inputs
- Follow secure coding practices
We acknowledge security researchers who help improve MediQ's security responsibly.
π Thank you for helping keep MediQ and our users safe!
Contact: [email protected] | Live: mediq.io