Security

SECURITY.md

Security Policy

Supported Versions

The main branch is actively maintained.

Reporting a Vulnerability

Please report vulnerabilities privately and responsibly.

Preferred: open a private security advisory on GitHub.
Alternative: open an issue marked security without disclosing exploit details.

Please include:

affected repository and version or commit
reproduction steps
impact assessment
suggested remediation, if known

Response Targets

Initial acknowledgement: within 3 business days
Triage decision: within 7 business days
Remediation timeline: based on severity and exploitability

There aren’t any published security advisories