If you believe you've found a security vulnerability, please follow these steps:
- Do not disclose the vulnerability publicly until it has been addressed by the maintainers.
- Email your findings to
hai@kumix.ioInclude:- A description of the vulnerability
- Steps to reproduce the vulnerability
- Potential impact of the vulnerability
- Any suggestions for mitigation
- Any other relevant information
- We aim to respond to your report within 72 hours.
- If the issue is confirmed, we will release a patch as soon as possible.
If the issue is confirmed, we will release a patch as soon as possible. Once a patch is released, we will disclose the issue publicly. If 90 days elapse and we still don't have a fix, we may disclose the issue publicly.
We only support the latest version. Older versions are not supported.