This is a static personal website hosted on GitHub Pages. There is no versioned software release — the main branch is always the live version.
| Branch | Supported |
|---|---|
main |
✅ Yes |
If you discover a security vulnerability in this repository (e.g. exposed secrets, a compromised dependency, or a cross-site scripting issue in the site's JavaScript), please report it responsibly:
- Do not open a public GitHub issue for security vulnerabilities.
- Use GitHub's private vulnerability reporting to submit a report confidentially.
- Alternatively, send an e-mail to info@thomas-schulze-it-solutions.de with the subject line
[SECURITY] <brief description>.
You can expect an acknowledgement within 5 business days and a resolution or mitigation plan within 14 days for confirmed vulnerabilities.
This repository uses Dependabot to automatically monitor and update:
- GitHub Actions used in CI/CD workflows (
.github/workflows/) - npm packages used by the Playwright test suite (
tests/)
The production website itself has zero runtime dependencies — it is a plain HTML/CSS/JavaScript static site with no third-party frameworks or CDN resources.