If you discover a security vulnerability in subenum, do not open a public issue.
Report it privately using GitHub's Security Advisory feature:
- Go to the Security tab of this repository.
- Click "Report a vulnerability".
- Fill in the description, reproduction steps, and impact.
You will receive acknowledgment within 48 hours. We will investigate, provide a fix timeline, keep you informed throughout, and credit you upon resolution (unless you prefer anonymity).
This security policy applies to the latest version of subenum in the main branch.
Remember that subenum is designed for:
- Educational purposes
- Authorized security testing
Using this tool against systems without explicit permission is potentially illegal and explicitly prohibited by our license terms.
Security researchers and responsible disclosure are vital to maintaining secure software. We appreciate your efforts to disclose vulnerabilities responsibly.