We release updates to this project regularly and maintain the following versions:
Version | Supported |
---|---|
1.x.x | ✅ |
0.x.x | ❌ |
To report a vulnerability, please follow these steps:
- Create a Security Advisory via the GitHub Security tab in the repository. This will allow you to privately communicate your findings with the project maintainers.
- If the vulnerability is valid, we will work to confirm the issue and issue a fix as soon as possible.
- Please refrain from publicly disclosing the vulnerability until we have issued a patch.
- Private Report: Submit vulnerabilities using the GitHub Security Advisory feature.
- Triage: We will triage your submission and respond with an action plan or request further information.
- Resolution: Once confirmed, we will work to provide a fix and notify you when it has been addressed.
- Public Disclosure: Once a fix is released, we will update the community by disclosing the advisory.
For urgent security issues, please contact our security team at [[email protected]].