Workflow and Security Updates

N0tHorizon · N0tHorizon · commit 5705c0dee891 · 2025-09-21T15:38:52.000-04:00
diff --git a/.github/workflows/env-matrix.yml b/.github/workflows/env-matrix.yml
@@ -0,0 +1,52 @@
+description: |
+
+name: Environment Compatibility Matrix
+
+on:
+  push:
+    branches: [ "🌕Nextgen", "📦Current" ]
+  pull_request:
+    branches: [ "🌕Nextgen", "📦Current" ]
+
+jobs:
+  matrix-test:
+    name: Env: ${{ matrix.os }} | Shell: ${{ matrix.shell }} | Admin: ${{ matrix.admin }} | Locale: ${{ matrix.locale }}
+    runs-on: ${{ matrix.os }}
+    strategy:
+      fail-fast: false
+      matrix:
+        os: [windows-2019, windows-2022]
+        shell: [pwsh, powershell]
+        admin: [true, false]
+        locale: [en-US, de-DE]
+    steps:
+
+
+      - name: Set locale
+        run: |
+          Set-WinSystemLocale ${{ matrix.locale }}
+        shell: powershell
+        continue-on-error: true
+
+      - name: Run as admin (if required)
+        if: ${{ matrix.admin == 'true' }}
+          Start-Process -FilePath ${{ matrix.shell }} -ArgumentList '-NoProfile -ExecutionPolicy Bypass -File windows-telemetry-blocker.ps1 -dryrun' -Verb RunAs
+        shell: powershell
+        continue-on-error: true
+
+      - name: Run as non-admin (if required)
+        if: ${{ matrix.admin == 'false' }}
+        run: |
+          ${{ matrix.shell }} -NoProfile -ExecutionPolicy Bypass -File windows-telemetry-blocker.ps1 -dryrun
+        shell: powershell
+        continue-on-error: true
+
+      - name: Upload logs and report
+        uses: actions/upload-artifact@v4
+        with:
+          name: logs-${{ matrix.os }}-${{ matrix.shell }}-${{ matrix.admin }}-${{ matrix.locale }}
+          path: |
+            telemetry-blocker.log
+            telemetry-blocker-errors.log
+            telemetry-blocker-report.md
+        if-no-files-found: ignore
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,27 @@
+# Security Policy
+
+## Supported Versions
+- Only the latest release is actively supported for security updates.
+- Older versions may not receive security patches.
+
+## Reporting a Vulnerability
+If you discover a security vulnerability, please do **not** open a public issue. Instead, report it privately:
+
+- Email: security@n0thorizon.dev (or use GitHub's private vulnerability reporting)
+- Include a detailed description, steps to reproduce, and any relevant logs or screenshots.
+- We will respond as quickly as possible and coordinate a fix.
+
+## Security Best Practices
+- Always download releases from the official repository.
+- Review scripts before running, especially if you modify them.
+- Run the script in a test environment before deploying to production systems.
+- Keep your system and PowerShell up to date.
+
+## Disclosure Policy
+- We follow responsible disclosure. Vulnerabilities will be fixed promptly and disclosed after a patch is released.
+
+## Hall of Fame
+- Security researchers who responsibly disclose vulnerabilities may be credited here (with permission).
+
+---
+For any other security concerns, contact the maintainer directly.
