Use this section to tell people about which versions of your project are currently being supported with security updates.
| Version | Supported |
|---|---|
| 1.0.x | ✅ |
| 0.9.x | ✅ |
| 0.8.x | ❌ |
| < 0.8 | ❌ |
We take the security of our project seriously. If you believe you've found a security vulnerability, please follow these steps:
- Do not disclose the vulnerability publicly
- Email [security@example.com] with details about the vulnerability
- Include steps to reproduce
- Include potential impact
- If possible, include suggestions for remediation
- Allow time for response and remediation
- We aim to respond to security reports within 48 hours
- We'll keep you updated on our progress addressing the issue
When a security vulnerability is reported:
- We will confirm receipt of the vulnerability report
- We will investigate and validate the reported issue
- We will develop and test a fix
- We will release a security update
- We will publicly disclose the issue after a fix is available
- Keep the project updated to the latest supported version
- Apply security patches promptly
- [Any other security recommendations specific to your project]
Security updates will be released as:
- Patch versions for supported releases
- Security advisories on GitHub
- Announcements in our release notes
[List of past security advisories or link to GitHub Security Advisories]