Reporting a Vulnerability
We are committed to maintaining the security of this project and its users. We appreciate your efforts in helping us keep it safe.
If you find a security vulnerability, we ask that you report it to us privately and responsibly. Please do not create a public GitHub issue, as this could be exploited by malicious actors.
To report a vulnerability, please send an email to:
In your report, please include as much detail as possible to help us understand and resolve the issue quickly. This should include:
- A clear and concise description of the vulnerability.
- The steps to reproduce the issue.
- The affected version(s) of the project.
- Any proof-of-concept code or exploits.
- The potential impact of the vulnerability.
We will acknowledge your email within 48 hours and provide a more detailed response after our initial investigation. We will work with you to understand the issue and plan a fix. Once a fix has been released, we will credit you for your responsible disclosure, unless you wish to remain anonymous.
Supported Versions
This section outlines which versions of the project are currently receiving security updates.
- Version
X.X.X: Receiving full security updates. - Version
Y.Y.Y: Receiving critical security updates only. - Older Versions: Not supported. If you find a vulnerability in an unsupported version, we encourage you to upgrade to a supported version and check if the vulnerability persists.