We actively support the latest version of GitLaunch. Security updates are provided for:
| Version | Supported |
|---|---|
| Latest | ✅ |
| < Latest | ❌ |
If you discover a security vulnerability, please follow these steps:
- Do NOT open a public issue
- Email the maintainer directly at: [[email protected]] or create a private security advisory on GitHub
- Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- Initial Response: Within 48 hours
- Status Update: Within 7 days
- Fix Timeline: Varies based on severity (Critical: 1-3 days, High: 1-2 weeks)
When contributing:
- Never commit API keys or sensitive data
- Validate all user inputs
- Use environment variables for configuration
- Follow OWASP security guidelines
- Keep dependencies updated
We follow responsible disclosure:
- Issue is reported privately
- We investigate and develop a fix
- Fix is released
- Public disclosure (with credit to reporter)
Thank you for helping keep GitLaunch secure!