Rania JMAI | cb60015 | 2023-05-24 09:21:00 +0100 | [diff] [blame] | 1 | # Report potential product security vulnerabilities |
| 2 | |
| 3 | ST places a high priority on security, and our Product Security Incident |
| 4 | Response Team (PSIRT) is committed to rapidly addressing potential security |
| 5 | vulnerabilities affecting our products. PSIRT's long history and vast experience |
| 6 | in security allows ST to perform clear analyses and provide appropriate guidance |
| 7 | on mitigations and solutions when applicable. |
| 8 | |
| 9 | If you wish to report potential security vulnerabilities regarding our products, |
| 10 | **please do not report them through public GitHub issues.** Instead, we |
| 11 | encourage you to report them to our ST PSIRT following the process described at: |
| 12 | **https://www.st.com/content/st_com/en/security/report-vulnerabilities.html** |
| 13 | |
| 14 | ### IMPORTANT - READ CAREFULLY: |
| 15 | |
| 16 | STMicroelectronics International N.V., on behalf of itself, its affiliates and |
| 17 | subsidiaries, (collectively “ST”) takes all potential security vulnerability |
| 18 | reports or other related communications (“Report(s)”) seriously. In order to |
| 19 | review Your Report (the terms “You” and “Yours” include your employer, and all |
| 20 | affiliates, subsidiaries and related persons or entities) and take actions as |
| 21 | deemed appropriate, ST requires that we have the rights and Your permission to |
| 22 | do so. |
| 23 | |
| 24 | As such, by submitting Your Report to ST, You agree that You have the right to |
| 25 | do so, and You grant to ST the rights to use the Report for purposes related to |
| 26 | security vulnerability analysis, testing, correction, patching, reporting and |
| 27 | any other related purpose or function. |
| 28 | |
| 29 | By submitting Your Report, You agree that ST’s |
| 30 | [Privacy Policy](https://www.st.com/content/st_com/en/common/privacy-portal.html) |
| 31 | applies to all related communications. |