We provide security updates and patches for the following versions:
| Version | Supported |
|---|---|
| 1.x | ✅ |
| < 1.0 | ❌ |
If you discover a security vulnerability in this project, please follow these steps:
-
Contact Us: Email us at [[email protected]] with a clear description of the issue. Include:
- Steps to reproduce the vulnerability.
- The impact of the vulnerability (e.g., data leakage, unauthorized access, etc.).
- Any suggestions for resolving the issue.
-
Do Not Share Publicly: Do not disclose the vulnerability publicly until we have assessed and resolved it.
-
Acknowledgment: We will acknowledge receipt of your report within 2 business days and provide regular updates on the progress.
-
Resolution Timeline: We aim to fix all reported vulnerabilities within 14 days or provide a workaround if a fix takes longer.
-
Recognition: If you agree, we will credit your contribution to the security of the project in the release notes.
To help maintain the security of the project:
- Keep your dependencies updated.
- Review pull requests carefully to ensure no malicious code is introduced.