The following versions of Magic-ecommerce currently receive security updates:
| Version | Supported |
|---|---|
| 1.x | ✅ |
If you discover a security vulnerability in Magic-ecommerce, please do not open a public GitHub issue. Instead, report it responsibly by emailing:
Please include the following in your report:
- A description of the vulnerability and its potential impact.
- Steps to reproduce or a proof-of-concept.
- Any suggested mitigations or fixes, if available.
You will receive an acknowledgment within 48 hours. We aim to release a fix or provide a mitigation plan within 14 days of a confirmed vulnerability, depending on severity and complexity.
We appreciate responsible disclosure and will credit reporters in the release notes unless they prefer to remain anonymous.