Responsible Disclosure Policy

Updated October 17, 2024

Aisle Planner is providing this service to help ensure a safe and secure environment for all users. 

If external parties find any sensitive information, potential vulnerabilities, or weaknesses, please help by responsibly disclosing it to ResponsibleDisclosure@fullsteam.com.

This policy applies to Aisle Planner hosted applications and to any other subdomains or services associated with products. Aisle Planner does not accept reports for vulnerabilities which solely affect marketing websites (www.aisleplanner.com), containing no sensitive data.

Security researchers must not: 
-engage in physical testing of facilities or resources, 
-engage in social engineering,
-send unsolicited electronic mail to Aisle Planner users, including "phishing" messages,
-execute or attempt to execute "Denial of Service" or "Resource Exhaustion" attacks,
-introduce malicious software,
-execute automated scans or tools that could disrupt service, such as password guessing attacks, or be perceived as an attack by intrusion detection/prevention systems, 
-test in a manner which could degrade the operation of Aisle Planner systems; or intentionally impair, disrupt, or disable Aisle Planner systems,
-test third-party applications, websites, or services that integrate with or link to or from Aisle Planner systems,
-delete, alter, share, retain or destroy Aisle Planner data, or render Aisle Planner data inaccessible, or,
-use an exploit to exfiltrate data, establish command line access, establish a persistent presence on Aisle Planner systems, or "pivot" to other Aisle Planner systems.

Security researchers may: 
-view or store Aisle Planner nonpublic data only to the extent necessary to document the presence of a potential vulnerability.

Security researchers must:
-cease testing and notify us immediately upon discovery of a vulnerability,
-cease testing and notify us immediately upon discovery of an exposure of nonpublic data, and, 
-purge any stored Aisle Planner nonpublic data upon reporting vulnerability.

Thank you for helping to keep Aisle Planner users safe! 
 

The website encountered an unexpected error. Try again later.
TypeError: Drupal\ap_gallery\Plugin\QueueWorker\GalleryJsonQueueProcessor::__construct(): Argument #6 ($file) must be of type Drupal\s3fs\S3fsFileService, Drupal\s3fs\S3fsFileSystemD103 given, called in /var/www/ap/web/modules/custom/ap_gallery/src/Plugin/QueueWorker/GalleryJsonQueueProcessor.php on line 63 in Drupal\ap_gallery\Plugin\QueueWorker\GalleryJsonQueueProcessor->__construct() (line 46 of modules/custom/ap_gallery/src/Plugin/QueueWorker/GalleryJsonQueueProcessor.php).
Drupal\ap_gallery\Plugin\QueueWorker\GalleryJsonQueueProcessor->__construct() (Line: 63)
Drupal\ap_gallery\Plugin\QueueWorker\GalleryJsonQueueProcessor::create() (Line: 21)
Drupal\Core\Plugin\Factory\ContainerFactory->createInstance() (Line: 83)
Drupal\Component\Plugin\PluginManagerBase->createInstance() (Line: 63)
Drupal\Core\Queue\QueueWorkerManager->createInstance() (Line: 208)
Drupal\Core\Cron->processQueues() (Line: 162)
Drupal\Core\Cron->run() (Line: 75)
Drupal\Core\ProxyClass\Cron->run() (Line: 65)
Drupal\automated_cron\EventSubscriber\AutomatedCron->onTerminate()
call_user_func() (Line: 111)
Drupal\Component\EventDispatcher\ContainerAwareEventDispatcher->dispatch() (Line: 115)
Symfony\Component\HttpKernel\HttpKernel->terminate() (Line: 66)
Drupal\Core\StackMiddleware\StackedHttpKernel->terminate() (Line: 715)
Drupal\Core\DrupalKernel->terminate() (Line: 22)