| Version | Supported |
|---|---|
| 0.x (latest) | Yes |
For non-sensitive security issues (e.g. dependency updates, minor hardening improvements), please open a GitHub issue.
For vulnerabilities that could affect users (e.g. cryptographic weaknesses, key material exposure, denial-of-service in the handshake), please do not open a public issue. Instead, email the maintainer directly:
Include:
- A description of the vulnerability and its potential impact
- Steps to reproduce or a proof-of-concept (if available)
- The .NET version and platform you observed it on
You can expect an acknowledgement within 48 hours and a resolution timeline within the reply. We will coordinate a public disclosure date with you once a fix is ready.