If you discover a security vulnerability within our project, please send an email to [email protected]. All security vulnerabilities will be promptly addressed.
Please do not report security vulnerabilities through public GitHub issues.
We will only provide security updates to the latest minor version of the project. It is recommended that you upgrade to the latest minor version to receive the latest security updates.
When we receive a security vulnerability report, we will take the following steps:
- Confirm the vulnerability and determine its scope
- Create fixes for all supported versions
- Notify all affected users and provide instructions on how to apply fixes
- Publish a security bulletin on our website