Use this section to inform users about which versions of your project are currently supported with security updates.
Version | Supported |
---|---|
5.1.x | ✅ |
5.0.x | ❌ |
4.0.x | ✅ |
< 4.0 | ❌ |
We appreciate and encourage responsible disclosure of security vulnerabilities. Please follow these guidelines to report a vulnerability:
-
Where to Report:
- For security-related issues, email us directly at [email protected]. Please do not create public GitHub issues for security vulnerabilities.
-
Expectations:
- We will acknowledge your email promptly (within 48 hours) and strive to provide regular updates on our progress.
- We will confirm the vulnerability and its potential impact and work with you to address it before making any public disclosure.
-
Vulnerability Response Time:
- We aim to respond to initial reports within 48 hours and will actively work to resolve any confirmed vulnerabilities in a timely manner.
-
Coordinated Disclosure:
- If necessary, we will work with you to determine an appropriate release schedule for addressing the vulnerability.
-
Vulnerability Acceptance or Decline:
- After investigation, if the reported issue is confirmed, we will provide credit to the reporter upon resolution. If the report is deemed invalid, we will explain the rationale.
Your cooperation in disclosing vulnerabilities responsibly is crucial for the security of our users and the community. We appreciate your efforts to make our project safer.
Thank you!