Security Policy

Reporting a Vulnerability

This repository contains the static NexusHub website and documentation published at:

https://nexushub.tools

If you discover a security issue related to the website, GitHub Pages setup, documentation, or website assets, please report it privately.

For security issues in the main NexusHub application, API, WireGuard management logic, dashboard, CLI, deployment code, or eBPF security rules, please use the main project security policy:

https://github.com/tomeksdev/NexusHub/security/policy

Website Scope

This policy applies to:

• Static website source code
• GitHub Pages configuration
• Jekyll configuration
• Website documentation
• Local assets used by the website

Out of Scope

The following are usually out of scope for this website repository:

• Issues in unofficial forks
• Issues caused by browser extensions
• Issues in third-party services not controlled by this project
• Reports without enough detail to reproduce the issue

Contact

If GitHub private vulnerability reporting is not available for this website repository, contact the maintainer:

• GitHub: @tomeksdev
• Email: tomeknomek@gmail.com

Please do not open a public issue for security vulnerabilities.

Disclosure

Please give the maintainer reasonable time to investigate and fix confirmed security issues before public disclosure.

Thank you for helping keep NexusHub safe.