Only the most recent version of the deployed application and the main branch of this repository are currently supported with security updates.

We take the security of RAW.AI seriously. If you have discovered a security vulnerability, we appreciate your help in disclosing it to us in a responsible manner.

Please DO NOT create a public GitHub issue for security vulnerabilities.

Instead, please report the vulnerability by emailing arshverma.dev@gmail.com with the subject line [SECURITY] Vulnerability Report - RAW.AI.

In your report, please include:

1. Type of Vulnerability: e.g., XSS, SQL Injection, Auth Bypass.
2. Affected Component: The specific URL, component, or code snippet.
3. Reproduction Steps: Detailed steps to reproduce the issue.
4. Proof of Concept: A screenshot, video, or script demonstrating the vulnerability.

1. Acknowledgement: We will acknowledge your report within 48 hours.
2. Assessment: We will investigate the issue and determine its severity within 5 business days.
3. Resolution: If confirmed, we will work on a patch and release it as soon as possible. We will keep you updated on the progress.

At this time, we do not offer a bug bounty program. However, we will happily credit you in our Release Notes and identifying you as a contributor to the security of our platform (unless you prefer to remain anonymous).

Thank you for helping keep RAW.AI safe! 🛡️