Only the latest released version of this project is supported with security updates.
If you discover a security vulnerability, please do not open a public issue. Instead, report it privately using GitHub Security Advisories.
Please include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Any suggested fixes
We will acknowledge your report as soon as reasonably possible.
- We aim to respond to security reports within 7 days
- We will work on a fix and coordinate disclosure if needed
- Public disclosure should only happen after a fix is released
We appreciate responsible disclosure and the efforts of security researchers who help keep open source projects safe.