This fork has not published an independent stable release line yet.
| Version | Supported |
|---|---|
main |
✅ active development |
| tagged fork releases before an explicit fork policy decision | ❌ not yet supported as a stable channel |
Preferred channel: GitHub Private Vulnerability Reporting for this repository.
Maintainer action: enable private vulnerability reporting in the repository settings before the first independent fork release.
If private reporting is not yet enabled:
- Do not open a public issue with exploit details.
- Open a minimal issue that only asks for a private security contact, or contact the maintainer through the repository owner profile without including the exploit details publicly.
- Wait for a private channel before sharing proof-of-concept material.
Please include, when possible:
- affected version or commit
- impact summary
- reproduction steps
- whether a secret, token, or private note content could be exposed
- least-privilege GitHub tokens only
- no telemetry or hidden exfiltration
- no secrets in tests, fixtures, logs, screenshots, or releases
.obsidian/and other configuration files are treated as sensitive surfaces by default