The security of Seatek_Analysis is a top priority. This project processes potentially sensitive environmental data, so we encourage all users and contributors to help keep it safe and secure.

If you discover a security vulnerability or suspect a potential issue:

• Do not open a public issue.
• Please email [AbhiMehrotra@pm.me] or use GitHub’s private security advisories.
• Provide as much detail as possible, including steps to reproduce the issue.
• We aim to respond within 5 business days.

Only the latest version (main branch) receives security updates.

• Python dependencies are managed via requirements.txt. Keep packages updated with pip install --upgrade -r requirements.txt.
• R dependencies should be updated regularly with update.packages().
• Use tools like pip-audit (Python) and renv (R) to check for known vulnerabilities.

• Never commit sensitive info: Avoid hardcoding API keys, credentials, or personal data. Use environment variables or secret management tools.
• Validate data inputs: Ensure all sensor and environmental data are validated before processing.
• Follow language-specific security guidelines:
  • Python Security Best Practices
  • R Security Best Practices

This repository uses:

• Dependabot for automated dependency updates.
• Code scanning for vulnerability detection.

• Review your code for security issues before submitting a pull request.
• Flag any potential security concerns in your PR description.
• Adhere to PEP 8 (Python) and tidyverse style guide (R) for clarity and maintainability.

For security-related questions, contact the maintainers at [AbhiMehrotra@pm.me].