The FogROS2 SGC project welcomes security reports and is committed to providing prompt attention to security issues. Security issues should be reported privately. Security issues should not be reported via the public Github Issue tracker.

Remediation of security vulnerabilities is prioritized by the project team. The project team coordinates remediation with third-party project stakeholders via Github Security Advisories. Third-party stakeholders may include the reporter of the issue, affected direct or indirect users of FogROS2 SGC, and maintainers of upstream dependencies if applicable.

The project team is committed to transparency in the security issue disclosure process.