The latest published 0.x release receives security fixes. As a pre-1.0
package, older minor versions are not maintained.
| Version | Supported |
|---|---|
latest 0.x |
✅ |
| older | ❌ |
Please do not open a public issue for security reports.
Report privately via GitHub Security Advisories:
- Go to the repository's Security → Advisories tab.
- Choose Report a vulnerability.
Alternatively, email hello@pdfnative.dev with:
- a description of the issue and its impact,
- steps to reproduce or a proof of concept,
- affected version(s) and environment.
We aim to acknowledge reports within a few business days and to coordinate a fix and disclosure timeline with you.
pdfnative-react compiles JSX into a pdfnative document model and renders PDF
bytes locally — it performs no network I/O. Vulnerabilities in the underlying
PDF engine should be reported to the
pdfnative project.