Please do not report security vulnerabilities through public GitHub issues, discussions, or pull requests.
Instead, report them privately via either:
- GitHub's private vulnerability reporting, or
- email to unohee.official@gmail.com with the subject line
SECURITY: OpenSwarm.
Please include:
- a description of the vulnerability and its impact,
- steps to reproduce (proof of concept if possible),
- affected version(s) and environment.
You can expect an initial response within a few days. Once the issue is confirmed and fixed, the advisory will be published and credit given (unless you prefer to remain anonymous).
OpenSwarm is pre-1.0; security fixes land on the latest published 0.x release.
Please upgrade to the latest version before reporting.