Versions of your project that are currently supported with security updates.
| Version | Supported |
|---|---|
| 1.0.x | ✅ |
We take the security of our project seriously. If you discover a vulnerability, please follow the steps below to report it:
-
Where to Report:
- Please report vulnerabilities by sending a message to our security team at Report a vulnerability. Please include as much detail as possible about the issue, including steps to reproduce it.
-
What to Include:
- A clear and concise description of the vulnerability.
- Steps to reproduce the issue.
- Potential impact of the vulnerability.
- Any suggested fixes or patches, if available.
-
Acknowledgement of Receipt:
- Upon receipt of your report, we will send you an acknowledgement.
-
Evaluation and Updates:
- Our security team will assess the vulnerability and determine its validity and severity. We strive to provide an initial update within 5 business days.
-
Resolution:
- If the vulnerability is accepted, we will work on a fix.
- If the vulnerability is rejected (for example, if it is considered a non-issue or a duplicate report), we will provide a detailed explanation.
-
Confidentiality:
- We ask that you keep your report confidential until we have resolved the issue and made an official announcement.
- We are committed to crediting researchers who disclose vulnerabilities responsibly, unless they prefer to remain anonymous.
-
Acknowledgement:
- If your vulnerability report is accepted and you agree, we will acknowledge your contribution in the security section of the release notes.
We appreciate your efforts to help us maintain the security and integrity of our project. Thank you very much for your contribution!