We take security seriously and will actively address security issues in the following versions of Xphyrus. If you are using an older version, we encourage you to update to the latest version to ensure you have the latest security patches.

If you discover a security vulnerability within Xphyrus, we encourage you to report it to us as soon as possible. Please send your report via email to:

Email: [email protected]

Please include the following information in your report:

• Description of the vulnerability: Provide a detailed explanation of the vulnerability and its potential impact.
• Steps to reproduce: Include step-by-step instructions to help us reproduce the issue.
• Affected versions: Specify which versions of Xphyrus are affected.
• Potential impact: Describe the impact of the vulnerability (e.g., data leakage, privilege escalation, etc.).
• Any other relevant information: Include logs, screenshots, or any other data that might help us understand the issue better.

We will acknowledge your report within 48 hours and aim to provide a resolution timeline as soon as possible. We request that you do not publicly disclose the vulnerability until we have had a chance to address it.

Once a vulnerability is confirmed, we will take the following steps:

1. Patch the vulnerability: A fix will be implemented and tested.
2. Update the documentation: Any necessary changes to the documentation will be made to address the vulnerability.
3. Release a security update: We will release a new version of Xphyrus that includes the security fix.
4. Notify users: We will notify the community about the security update via our communication channels (e.g., GitHub Releases, mailing list).

We appreciate the efforts of the security community in helping to improve the security of Xphyrus. Your contribution is highly valued, and we will give credit to all researchers who help us make Xphyrus more secure.

If you have any questions regarding our security policies, please reach out to us at [email protected].