This project is part of a community-led research initiative to improve coconut plantation yield through smart AgriTech and IT collaboration. While the project is open to all contributors, we take security and responsible disclosure seriously to protect the integrity of our data, research, and contributors.
We follow an open research and documentation model. The following areas are currently monitored for potential security concerns:
- IoT device firmware or configurations (if published)
- Cloud and backend service configurations (when applicable)
- API endpoints or dashboards (when exposed)
- Documentation or datasets that contain sensitive or identifiable information
If you find any vulnerability in these areas, or in associated repositories, we kindly request that you follow the responsible disclosure process outlined below.
If you have found a potential vulnerability, please do not create a public issue.
Instead, report it privately via email:
π§ Email: damith@drklk.org
π Subject Line: Security Report β Coconut AgriTech Project
Please include:
- A clear description of the issue
- Steps to reproduce (if applicable)
- Any relevant logs or screenshots
- Suggested mitigation or fix (if known)
We aim to acknowledge all genuine reports within 5 working days.
We greatly appreciate responsible researchers who take the time to report issues privately and allow us to address them properly before public disclosure.
Please do not:
- Exploit vulnerabilities to gain unauthorised access
- Share vulnerabilities publicly before we have confirmed and responded
- Use the project or its data to conduct testing without permission
We will:
- Acknowledge your report promptly
- Keep you informed of the status and resolution
- Credit your contribution (unless you prefer to remain anonymous)
- Work with urgency to patch or document fixes
If you come across behaviours or contributions that may compromise user safety or violate ethical norms (e.g., unauthorised data collection, harmful configurations, etc.), please report them to the same email address above.
Document last updated: {{21st April 2025}}