If you discover a security vulnerability within this project, we encourage you to report it to us as soon as possible. Your report will be treated confidentially and will be investigated promptly.

To report a vulnerability, please send an email to [[email protected]] with the following information:

• A description of the vulnerability, including steps to reproduce it if applicable
• The affected version(s) of the software
• Any additional information that may help us understand and reproduce the issue

We recommend that users of this project follow these security best practices:

• Keep your dependencies updated: Regularly update your dependencies to their latest versions to benefit from security patches and improvements.
• Use strong passwords: Ensure that any accounts related to this project (e.g., admin panels, CI/CD systems) use strong, unique passwords.
• Enable two-factor authentication (2FA): Whenever possible, enable 2FA for added security on accounts.
• Audit your code: Regularly audit your codebase and third-party libraries for known vulnerabilities using tools like npm audit.

We appreciate the efforts of the security community in helping us keep this project secure. If you report a vulnerability and it is verified, we will acknowledge your contribution in the release notes or documentation, unless you prefer to remain anonymous.

While we strive to maintain the security of this project, we cannot guarantee that all vulnerabilities will be identified or addressed in a timely manner. Users of this project are responsible for implementing their own security measures.