This project is currently in early development. Security updates are applied to the latest version of the repository.
If you discover a security vulnerability, please do not open a public issue.
Instead, report it privately via one of the following:
- GitHub Security Advisory (preferred)
- Email: info@playerunknownproductions.net
Primary Maintainer
Please include the following information in your report:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Suggested fix (if available)
We aim to acknowledge reports within 3–5 business days and will provide updates as the issue is investigated and resolved.
Security issues may include, but are not limited to:
- Malicious code execution through build scripts
- Unsafe CI/CD configurations
- Dependency vulnerabilities
- Template scripts that execute unintended commands
- Exposure of secrets in CI pipelines
Please allow time for the issue to be resolved before publicly disclosing the vulnerability.