We release patches for security vulnerabilities. Which versions are eligible for security updates depends on the project's current status and release schedule.
| Version | Supported |
|---|---|
| 1.x | ✅ |
| < 1.0 | ❌ |
If you discover a security vulnerability, please report it to us through our security email. Please include the following details with your report:
- A description of the vulnerability and its impact.
- Detailed steps to reproduce the vulnerability.
- Any additional information that might help us understand the issue.
We will respond to your report within 48 hours and will provide an estimated timeline for addressing the vulnerability.
Please avoid sharing any sensitive information in public forums such as GitHub issues. Use our security email for any sensitive information.
We will notify you about security updates through the following channels:
For more information about our security procedures and policies, please visit our Security Policy.
We believe in responsible disclosure of security vulnerabilities. We request that you:
- Give us reasonable time to address the vulnerability before making any details public.
- Provide a clear and concise report with steps to reproduce the vulnerability.
- Avoid exploiting the vulnerability for any purpose other than testing and reporting.
Thank you for helping us keep our project secure.