Use this section to tell people about which versions of your project are currently being supported with security updates.
| Version | Supported |
|---|---|
| 1.0.x | ✅ |
| < 1.0 | ❌ |
We take the security of Literaku seriously. If you have found a security issue, please adhere to the following guidelines:
- Do NOT open a public issue. Security vulnerabilities should be reported privately to prevent exploitation before a fix is released.
- Email us at security@literaku.app (or replace with your email).
- Provide a detailed description of the vulnerability, including steps to reproduce it.
We will acknowledge your report within 48 hours and provide an estimated timeline for a fix.
- Cross-Site Scripting (XSS)
- SQL Injection via Supabase RLS bypass
- Authentication bypass (NextAuth)
- Issues related to user-generated content (e.g., spam reviews) unless it involves a security exploit.
- DDoS attacks (handled by our infrastructure provider).