If you discover a security vulnerability in OpenSet, please report it responsibly.
Do not open a public GitHub issue for security vulnerabilities.
Instead, please email security@openset.dev with:
- A description of the vulnerability
- Steps to reproduce the issue
- Any potential impact
We will acknowledge your report within 48 hours and aim to provide a fix or mitigation plan within 7 days.
This policy covers:
- The
@diby/openset-typesnpm package - The
@diby/openset-validatornpm package - The
@openset/codegennpm package - The OpenSet JSON Schema files
- The openset.dev documentation website
| Version | Supported |
|---|---|
| 1.x | Yes |
| < 1.0 | No |