The following table outlines the versions of this project currently supported with security updates:
| Version | Supported |
|---|---|
| 5.1.x | ✅ Supported |
| 5.0.x | ❌ Not Supported |
| 4.0.x | ✅ Supported |
| < 4.0 | ❌ Not Supported |
Only supported versions will receive security updates. Users are encouraged to upgrade to a supported version to ensure they receive the latest security fixes.
We take security vulnerabilities seriously and appreciate your efforts in responsibly disclosing issues. If you discover a vulnerability, please follow the steps below:
- Contact Us: Report the vulnerability by sending an email to [security@yourdomain.com] with the subject line: Security Issue: [Brief Description].
- Provide Details: Include a detailed description of the issue, steps to reproduce it, and any potential impact. If applicable, attach proof-of-concept (PoC) code.
- Confidentiality: Do not publicly disclose the vulnerability until we have assessed and addressed the issue.
- Response Time:
- Acknowledgment: Within 48 hours of receiving the report.
- Initial Assessment: Within 5 business days to determine the severity and confirm the issue.
- Fix & Disclosure: We will provide an estimated timeline for fixing the vulnerability and coordinate a responsible disclosure date with you.
We appreciate responsible disclosure and may acknowledge contributors in release notes if they wish.
For urgent security matters, please use [security@yourdomain.com] with "URGENT" in the subject line.