The following table lists the versions of MyShelf currently supported with security updates. Users are encouraged to use the stable release to ensure the highest level of security.
| Version | Supported |
|---|---|
| 4.x.x | ✅ |
| 3.x | ❌ |
| 2.x | ❌ |
| < 2.0 | ❌ |
If you discover a security vulnerability in MyShelf, please follow these steps:
-
Contact Us: Report the issue via:
- Repository Security Advisory Report
-
Provide Details:
- A detailed description of the issue.
- Steps to reproduce the vulnerability (if applicable).
- The potential impact or risk.
-
Response Time:
- We will acknowledge your report within 48 hours.
- Regular updates will be provided during the investigation.
-
Resolution Timeline:
- Accepted vulnerabilities will be patched within 14 days of acknowledgment.
To ensure secure use of MyShelf:
- Stay Updated: Use version 4.0.0 or newer for the latest security fixes.
- Secure Your Environment:
- Avoid committing sensitive information like API keys or credentials.
- Use GitHub's security tools such as Dependabot and secret scanning.
- Follow JSON Standards: Validate JSON inputs and structures to avoid data inconsistencies.