Skip to content

Security: CrowdStrike/foundry-fn-python

Security

SECURITY.md

CrowdStrike Falcon

Security Policy

This document outlines security policy and procedures for the CrowdStrike foundry-fn-python project.

Supported Python versions

foundry-fn-python functionality is unit tested to run under the following versions of Python. Unit testing is performed with every pull request or commit to main.

Version Supported
>= 3.8 Yes
<= 3.7 No

Supported CrowdStrike regions

foundry-fn-python is unit tested for functionality across all commercial CrowdStrike regions.

Region
US-1
US-2
EU-1

Supported foundry-fn-python versions

When discovered, we release security vulnerability patches for the most recent release at an accelerated cadence.

Reporting a potential security vulnerability

We have multiple avenues to receive security-related vulnerability reports.

Please report suspected security vulnerabilities by:

Disclosure and mitigation process

Upon receiving a security bug report, the issue will be assigned to one of the project maintainers. This person will coordinate the related fix and release process, involving the following steps:

  • Communicate with you to confirm we have received the report and provide you with a status update.
    • You should receive this message within 48 - 72 business hours.
  • Confirmation of the issue and a determination of affected versions.
  • An audit of the codebase to find any potentially similar problems.
  • Preparation of patches for all releases still under maintenance.
    • These patches will be submitted as a separate pull request and contain a version update.
    • This pull request will be flagged as a security fix.
    • Once merged, and after post-merge unit testing has been completed, the patch will be immediately published to both PyPI repositories.


WE STOP BREACHES

There aren’t any published security advisories