If you believe you have found a security vulnerability in this project, please report it to us responsibly. Do not create a public GitHub issue for the security vulnerability. Instead, please follow these steps:
-
Email: Send an email to [email protected] with details about the vulnerability.
-
GPG Key: If possible, use our PGP key to encrypt your email.
-
Information to Include: Please include the following information in your email:
- A description of the vulnerability.
- Steps to reproduce the vulnerability.
- Any potential impact of the vulnerability.
-
Responsiveness: We will acknowledge your email within 48 hours and work on resolving the issue promptly.
We strive to promptly address security vulnerabilities. Security updates will be provided through the project's release notes.
This security policy applies to the latest stable release of the project. If you are using an outdated or modified version, the security policy may not apply.
We appreciate your help in keeping the project safe. Thank you for practicing responsible disclosure.