We currently support the following versions with security updates:
| Version | Supported |
|---|---|
| latest | ✅ |
We take security vulnerabilities seriously. If you discover a security vulnerability in this project, please report it responsibly.
Please do NOT report security vulnerabilities through public GitHub issues.
Instead, please report security vulnerabilities by:
- Email: contact@colinsouth.com
- GitHub Security Advisories: Use GitHub's private vulnerability reporting feature by going to the Security tab of this repository and clicking "Report a vulnerability"
When reporting a vulnerability, please include:
- A description of the vulnerability
- Steps to reproduce the issue
- Potential impact of the vulnerability
- Any suggested fixes or mitigation strategies
- Your contact information for follow-up questions
- Acknowledgment: We will acknowledge receipt of your vulnerability report within 48 hours
- Initial Assessment: We will provide an initial assessment within 5 business days
- Resolution: We aim to resolve critical vulnerabilities within 30 days
- We follow responsible disclosure practices
- We will work with you to understand and resolve the issue before any public disclosure
- We will credit you for the discovery (unless you prefer to remain anonymous)
- We may request that you keep the vulnerability confidential until we have a fix available
When using this tool:
- Always use the latest version
- Validate any configuration files before use
- Be cautious when analyzing untrusted code repositories
- Report any suspicious behavior
For security-related questions or concerns, please use the reporting methods outlined above.
Thank you for helping to keep our project and community safe!