Skip to content

Security: CleatSquad/magento-frankenphp-images

Security

SECURITY.md

Security Policy

Supported Versions

Version Supported
1.0.x

Reporting a Vulnerability

If you discover a security vulnerability:

  1. Do NOT open a public GitHub issue
  2. Send an email to: contact@cleatsquad.dev
  3. Include: description, steps to reproduce, potential impact

Response Timeline

  • Acknowledgment: Within 48 hours
  • Status Update: Within 7 days
  • Resolution: Within 14 days

Security Best Practices

Environment Variables

# Never commit .env files
# Use strong passwords (min 16 characters)
MYSQL_ROOT_PASSWORD=<strong-password>
DB_PASSWORD=<strong-password>
RABBITMQ_DEFAULT_PASS=<strong-password>

Production Checklist

  • All default passwords changed
  • SSL/TLS properly configured
  • Database ports not exposed externally
  • Two-Factor Authentication enabled for Magento admin
  • Backups configured

Security Resources

Contact

Security inquiries: contact@cleatsquad.dev

There aren’t any published security advisories