Skip to content

Security: Litote/openapi-ktor-client-generator

Security

Report a vulnerability

SECURITY.md

Security Policy

If you discover a security vulnerability, please report it privately via GitHub security advisories: https://github.com/Litote/openapi-ktor-client-generator/security

Do NOT report vulnerabilities via public issues or pull requests.

What to include in your report:

  • Clear description of the issue
  • Steps to reproduce
  • PoC or minimal proof-of-concept code
  • Impact assessment and affected versions
  • Your contact details for follow-up

Response timeline:

  • Acknowledgement: within 3 business days
  • Investigation: usually within 7 business days
  • Fix and release: as promptly as possible; we'll coordinate disclosure with the reporter

Responsible disclosure:

  • Avoid public disclosure until the issue is fixed and coordinated with the reporter
  • Provide details privately
  • Act in good faith and do not exploit the vulnerability beyond what's necessary to demonstrate it

Credits: We will credit reporters as appropriate when the issue is disclosed.

There aren’t any published security advisories