| Version | Supported |
|---|---|
| latest | ✅ Active |
| < latest | ❌ No longer supported |
Please do not report security vulnerabilities through public GitHub issues.
Security vulnerabilities require careful handling to protect users. Please use one of the following channels:
Use the "Security" tab → "Report a vulnerability" in this repository.
Reach out to the maintainer directly through GitHub.
Please provide as much detail as possible:
- Type of vulnerability (XSS, CSRF, injection, etc.)
- Affected versions
- Detailed steps to reproduce
- Potential impact assessment
- Suggested fix (if you have one)
| Milestone | Target |
|---|---|
| Acknowledgment | Within 48 hours |
| Initial assessment | Within 1 week |
| Fix for critical issues | Within 14 days |
| Fix for other issues | Within 90 days |
| Public disclosure | After patch release |
- We will acknowledge receipt of your report
- We investigate and determine impact
- We develop and test a fix
- We release a patch and security advisory
- We credit you in the release notes (unless you prefer anonymity)
Thank you for helping keep this project secure! 🛡️