Use this section to tell people about which versions of your project are currently being supported with security updates.
| Version | Supported |
|---|---|
| main | ✅ |
| older releases | ❌ |
If you discover a security vulnerability in this project, please do NOT open a public GitHub issue.
Instead, report it responsibly by emailing:
When reporting, please include:
- A clear description of the vulnerability
- Steps to reproduce the issue
- Potential impact (if known)
- Any relevant screenshots, logs, or proof-of-concept code
- Security reports will be acknowledged within 48 hours
- The maintainers will investigate and assess the issue
- If confirmed, an appropriate fix or mitigation will be planned
- Responsible disclosure will be followed before any public announcement
We appreciate responsible reporting and efforts to improve the security of this project.
Contributors are encouraged to:
- Avoid committing secrets (API keys, tokens, passwords)
- Use environment variables and
.env.example - Follow secure coding practices
- Validate and sanitize user inputs
- Report potential vulnerabilities responsibly
This security policy applies to:
- Source code
- Dependencies
- Configuration files
- Deployment-related files
Issues caused by outdated local environments or unsupported forks are out of scope.
We thank the community and contributors for helping keep this project secure.