RepoXray β X-Ray Repositories, Donβt Just Read Them.
We actively maintain and provide security updates for the following versions:
| Version | Supported |
|---|---|
| Latest | β |
| Previous Minor | β |
| Older Versions | β |
We recommend always using the latest version to ensure maximum security.
If you discover a security vulnerability in RepoXray, please report it responsibly.
- Email: your-email@example.com
- Or open a private security advisory via GitHub
Please provide:
- π Description of the vulnerability
- π Steps to reproduce
- π₯ Impact (what can be exploited)
- π οΈ Possible fix (if known)
- β³ Initial response: within 48 hours
- π Investigation: within 3β5 days
- π Fix release: based on severity
While using RepoXray:
- β Do not expose API keys or secrets
- π Use environment variables for sensitive data
- π¦ Keep dependencies updated
- π‘οΈ Avoid uploading private repositories without proper permissions
- Please do not publicly disclose vulnerabilities before they are fixed
- We appreciate ethical reporting and will acknowledge contributors
We value the security community and appreciate responsible disclosures that help improve RepoXray.
βUnderstand code. Secure it better.β