We currently support the following versions of the project:
Version | Supported |
---|---|
1.x | ✅ |
< 1.0 | ❌ |
If you discover a security vulnerability, please follow these steps:
- Do not open an issue directly on GitHub. This helps to avoid public exposure of the vulnerability.
- Contact me directly on GitHub:
- Go to my GitHub profile.
- Click on the "Message" button to send me a direct message with the following details:
- Description of the vulnerability.
- Steps to reproduce the issue.
- Potential impact of the vulnerability.
- Any suggested fixes or mitigations.
We will respond to your report within 5 business days to confirm receipt and provide an estimated timeline for resolution. Once the vulnerability is resolved, we will coordinate with you to disclose the issue responsibly.
We are committed to working with the community to identify and address security issues in a timely manner. To that end, we encourage responsible disclosure practices. If you follow the steps outlined above, we will:
- Acknowledge your report promptly.
- Work with you to understand and resolve the issue.
- Credit you in the release notes (if desired).
Thank you for helping us keep our project secure!