| Version | Status |
|---|---|
| v3.x.x | Actively supported |
| v2.x.x | Security updates only |
| v1.x.x | Unsupported |
If you discover a security vulnerability, please report it through one of the methods below.
Use GitHub Security Advisories to report privately.
This allows us to discuss and fix the issue before public disclosure.
Send an email to [email protected] with [SECURITY] in the subject line.
- Description — Brief explanation of the vulnerability
- Impact — How the vulnerability could be exploited
- Steps to reproduce — How to reproduce the issue
- Suggested fix — How you would fix it (if applicable)
| Severity | Response | Fix |
|---|---|---|
| Critical | Immediate | Patched as soon as possible |
| High | Within 24 hours | Patched within 7 days |
| Medium | Within 48 hours | Patched within 30 days |
| Low | Within 72 hours | Patched in next release |
For all reported vulnerabilities, we will provide a timeline and keep you updated on our progress.
For a list of disclosed security issues, see Security Advisories.