Currently, we only support security updates for the latest stable version of Council Hub.

We take the security of Council Hub seriously. If you discover a security vulnerability within this project, please do not disclose it publicly. Instead, please report it privately:

1. GitHub Private Vulnerability Reporting (preferred): Open a private advisory at https://github.com/iksnerd/council-hub/security/advisories/new — this is the fastest way to reach the maintainer and keeps the issue confidential until a fix is ready.
2. GitHub contact: If for some reason private advisories are unavailable, contact @iksnerd directly via the GitHub profile.

• A detailed description of the vulnerability.
• Steps to reproduce the issue (including proof-of-concept code if possible).
• Potential impact of the vulnerability.

1. Acknowledgment: We will acknowledge receipt of your report within 48-72 hours.
2. Investigation: We will investigate the issue and determine its severity.
3. Fix: We will work on a fix as quickly as possible.
4. Disclosure: Once the fix is applied and tested, we will coordinate a public disclosure with you, giving you full credit for the discovery if you wish.

Thank you for helping us keep Council Hub secure!