mirror of
https://github.com/CompassConnections/Compass.git
synced 2026-03-25 10:02:27 -04:00
ba9b3cfb06
* Test * Add pretty formatting * Fix Tests * Fix Tests * Fix Tests * Fix * Add pretty formatting fix * Fix * Test * Fix tests * Clean typeckech * Add prettier check * Fix api tsconfig * Fix api tsconfig * Fix tsconfig * Fix * Fix * Prettier
126 lines
4.8 KiB
TypeScript
126 lines
4.8 KiB
TypeScript
import Link from 'next/link'
|
||
import {Col} from 'web/components/layout/col'
|
||
import {Row} from 'web/components/layout/row'
|
||
import {PageBase} from 'web/components/page-base'
|
||
import {SEO} from 'web/components/SEO'
|
||
import {useT} from 'web/lib/locale'
|
||
|
||
export default function SecurityPage() {
|
||
const t = useT()
|
||
const email = 'hello@compassmeet.com'
|
||
const mailto = `mailto:${email}?subject=${encodeURIComponent('Security vulnerability report')}`
|
||
|
||
return (
|
||
<PageBase trackPageView={'security'} className={'relative p-2 sm:pt-0'}>
|
||
<SEO
|
||
title={t('security.seo.title', 'Security')}
|
||
description={t(
|
||
'security.seo.description',
|
||
'Report security vulnerabilities to the Compass team',
|
||
)}
|
||
url={`/security`}
|
||
/>
|
||
<Col className="max-w-3xl w-full mx-auto gap-6 custom-link mb-4">
|
||
<h1 className="text-3xl font-semibold">{t('security.title', 'Security')}</h1>
|
||
<p className="text-ink-700">
|
||
{t(
|
||
'security.intro',
|
||
'We take the security of our community seriously. If you believe you have found a vulnerability or security issue, please report it responsibly so we can investigate and fix it quickly.',
|
||
)}
|
||
</p>
|
||
|
||
<section className="space-y-2">
|
||
<h2 className="text-xl font-semibold">{t('security.how.title', 'How to report')}</h2>
|
||
<p>
|
||
{t(
|
||
'security.how.text',
|
||
'Please do not open public GitHub issues for security reports. Instead, contact us directly via one of the following:',
|
||
)}
|
||
</p>
|
||
<ul className="list-disc ml-6 space-y-1">
|
||
<li>
|
||
{t('security.how.contact_prefix', 'Use the ')}
|
||
<Link href="/contact">{t('security.how.contact_form', 'contact form')}</Link>
|
||
{t('security.how.contact_suffix', ' and choose the security category if available.')}
|
||
</li>
|
||
<li>
|
||
{t('security.how.email_prefix', 'Email us at ')}
|
||
<a href={mailto}>{email}</a>.
|
||
</li>
|
||
</ul>
|
||
</section>
|
||
|
||
<section className="space-y-2">
|
||
<h2 className="text-xl font-semibold">
|
||
{t('security.include.title', 'What to include')}
|
||
</h2>
|
||
<p>
|
||
{t(
|
||
'security.include.text',
|
||
'To help us triage and resolve the issue quickly, please include:',
|
||
)}
|
||
</p>
|
||
<ul className="list-disc ml-6 space-y-1">
|
||
<li>
|
||
{t('security.include.item1', 'A clear description of the issue and potential impact')}
|
||
</li>
|
||
<li>
|
||
{t(
|
||
'security.include.item2',
|
||
'Steps to reproduce (URLs, test accounts, exact requests/responses if applicable)',
|
||
)}
|
||
</li>
|
||
<li>
|
||
{t('security.include.item3', 'Any screenshots, videos, or proof-of-concept code')}
|
||
</li>
|
||
<li>
|
||
{t(
|
||
'security.include.item4',
|
||
'Your operating system, browser, and environment details',
|
||
)}
|
||
</li>
|
||
</ul>
|
||
</section>
|
||
|
||
<section className="space-y-2">
|
||
<h2 className="text-xl font-semibold">{t('security.response.title', 'Our response')}</h2>
|
||
<p>
|
||
{t(
|
||
'security.response.text',
|
||
'We aim to acknowledge new security reports within a few business days and will keep you updated as we investigate and remediate. Timeframes may vary based on severity and complexity.',
|
||
)}
|
||
</p>
|
||
</section>
|
||
|
||
<section className="space-y-2">
|
||
<h2 className="text-xl font-semibold">{t('security.scope.title', 'Out of scope')}</h2>
|
||
<p>
|
||
{t(
|
||
'security.scope.text',
|
||
'Please avoid tests that could degrade service for other users (e.g., denial of service) or that involve accessing another user’s data without explicit permission.',
|
||
)}
|
||
</p>
|
||
</section>
|
||
|
||
<section className="space-y-2">
|
||
<h2 className="text-xl font-semibold">{t('security.contact.title', 'Get in touch')}</h2>
|
||
<Row className="flex-wrap gap-3">
|
||
<Link
|
||
href="/contact"
|
||
className="px-3 py-2 rounded-md border border-primary-600 text-ink-700 hover:bg-primary-50"
|
||
>
|
||
{t('security.contact.form', 'Contact form')}
|
||
</Link>
|
||
<a
|
||
href={mailto}
|
||
className="px-3 py-2 rounded-md border border-primary-600 text-ink-700 hover:bg-primary-50"
|
||
>
|
||
{t('security.contact.email_button', 'Email')} {email}
|
||
</a>
|
||
</Row>
|
||
</section>
|
||
</Col>
|
||
</PageBase>
|
||
)
|
||
}
|