We actively maintain and provide security updates for the following versions:
| Version | Supported |
|---|---|
| 1.0.x | ✅ |
| < 1.0 | ❌ |
We take security vulnerabilities seriously. If you discover a security vulnerability in Hirundo, please report it privately.
- Do not create a public GitHub issue for security vulnerabilities
- Send an email to: [security@hirundo.dev] (or the maintainer's email)
- Include the following information:
- Description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Suggested fix (if available)
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Fix Timeline: Depends on severity, typically within 30 days for critical issues
Hirundo includes basic security measures appropriate for a static site generator:
- File Size Limits: Configurable limits for configuration and content files
- Basic Path Handling: Standard Swift file operations with proper error handling
- Content Processing: Safe processing of markdown and template content
- Standard APIs: Uses Swift's built-in file operations with proper error handling
- Resource Management: Automatic cleanup of file handles and resources
- Transpilation Disabled: Potentially unsafe JS transpilation disabled by default
- File Type Validation: Strict file type checking and processing
- Basic WebSocket: Simple live reload functionality
- Error Handling: Proper error reporting without sensitive information leakage
# Basic limits for content files
limits:
maxMarkdownFileSize: 1048576 # 1MB
maxConfigFileSize: 102400 # 100KB
maxFrontMatterSize: 10240 # 10KB
maxFilenameLength: 200 # Reasonable limit
maxTitleLength: 100 # SEO-friendly limit
maxDescriptionLength: 300 # Meta description limit
# Feature configuration
features:
minify: trueBefore deploying Hirundo in production:
- Review and configure file size limits in
config.yaml - Ensure JS minification remains disabled unless necessary
- Validate all content sources and inputs
- Use HTTPS for the production site
- Regularly update Hirundo and its dependencies
- Monitor build logs for security warnings
- Implement proper file permissions on the server
Hirundo focuses on the minimal, appropriate safeguards for a static site generator. There is no dynamic execution of untrusted code.
- Path handling uses standard Swift file APIs with proper error propagation.
- WebSocket live-reload is basic and scoped to local development.
- Dynamic plugin loading is disabled; only built-in, compiled plugins are supported.
Testing & Validation:
- Security-relevant behavior is covered by existing unit/integration tests where applicable. We do not claim a separate “security test suite” size.
Security updates and announcements will be published:
- In GitHub Security Advisories
- In the CHANGELOG.md file
- On the project's main page
- Through GitHub Releases with security tags
We appreciate security researchers and users who help keep Hirundo secure. Responsible disclosure helps protect all users.
Contributors who have helped improve Hirundo's security will be listed here (with their permission).
- Validate Content Sources: Only process trusted markdown files
- Review Frontmatter: Check YAML frontmatter for suspicious content
- Limit File Sizes: Use appropriate limits for your use case
- Monitor Build Output: Review generated HTML for unexpected content
- HTTPS Only: Always serve generated sites over HTTPS
- Content Security Policy: Implement appropriate CSP headers
- File Permissions: Set restrictive permissions on generated files
- Regular Updates: Keep Hirundo and dependencies updated
- Trusted Sources: Only use plugins and themes from trusted sources
- Code Review: Review any custom code or configurations
- Environment Separation: Keep development and production environments separate
- Backup Strategy: Maintain secure backups of your site content
For more security guidance, see our security documentation (when available).