If you discover a security vulnerability in UiPathOrch, please report it responsibly.
Do not open a public GitHub issue for security vulnerabilities.
Preferred: use GitHub's private vulnerability reporting. Open the repository's Security tab and click "Report a vulnerability". The report stays private to the maintainers until a fix is released. (If that button is not shown, private reporting has not been enabled for this repository yet — use the email fallback below.)
Fallback (email): if private reporting is unavailable, email the maintainer at ytsuda@gmail.com.
Either way, please include:
- A description of the vulnerability
- Steps to reproduce
- Potential impact
You should receive a response within 7 days. We will work with you to understand and address the issue before any public disclosure.
This policy applies to the UiPathOrch PowerShell module itself. For vulnerabilities in UiPath Orchestrator or other UiPath products, please use UiPath's official security reporting process.
Security fixes are applied to the latest release only.