| Version | Supported |
|---|---|
| 1.0.x | ✅ |
| 0.9.x | ✅ |
| < 0.9 | ❌ |
We take security vulnerabilities seriously. If you discover a security issue, please follow these steps:
- Do Not disclose the vulnerability publicly
- Email details to: security@playlistconverter.com
- Include:
- Description of the vulnerability
- Steps to reproduce
- Possible impact
- Suggested fix (if any)
- Initial response: Within 24 hours
- Status update: Every 48-72 hours
- Fix timeline: Based on severity
- Critical: 24-48 hours
- High: 3-5 days
- Medium: 1-2 weeks
- Low: Next release
- Acknowledgment of report receipt
- Validation and assessment
- Fix development and testing
- Security advisory issuance
- Public disclosure after patch release
- OAuth 2.0 implementation
- HTTPS encryption
- Rate limiting
- Input validation
- Regular security audits
- Always use the latest version
- Keep your API credentials secure
- Monitor your application logs
- Enable two-factor authentication where available
- Report any suspicious activity immediately
For urgent security issues: security@playlistconverter.com For general security questions: security-team@playlistconverter.com
We appreciate the work of security researchers who help keep our project safe. All verified security vulnerabilities will be acknowledged in our security advisories.